logo

CVE-2026-8037: Progress Kemp LoadMaster RCE Exploited in the Wild

ID: 6eb0e1fc-5d1d-562a-8870-07da5e5d6ea5

STIX ID: report--6eb0e1fc-5d1d-562a-8870-07da5e5d6ea5

Feed Name: SOCRadar Blog

Threat Score
78/100

Date Published: 2026-07-02

Date Updated: 2026-07-02

Author: ameer

...
...

CVE-2026-8037 is a critical (CVSS 9.6) unauthenticated OS command-injection vulnerability in Progress Kemp LoadMaster appliances reachable via the API; public proof-of-concept code and same-day in-the-wild exploitation attempts were reported. The advisory identifies affected 7.2.x versions, urges immediate patching to fixed releases, recommends reducing management/API exposure, and advises verification and forensic steps if compromise is suspected.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.