logo

Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts

ID: f4f2f9eb-1c32-5600-8a29-a0ba1828a49a

STIX ID: report--f4f2f9eb-1c32-5600-8a29-a0ba1828a49a

Feed Name: The Hacker News

Threat Score
75/100

Date Published: 2026-07-01

Date Updated: 2026-07-01

Author: [email protected] (The Hacker News)

...
...

A critical OS command injection vulnerability (CVE-2026-8037, CVSS 9.6) in Progress Kemp LoadMaster is being actively probed in the wild; eSentire observed exploitation attempts beginning June 29, 2026 from multiple IP addresses. Technical analysis links the flaw to improper handling in an escape_quotes() function that allows heap manipulation and command injection via the /accessv2 endpoint. A public proof-of-concept exists, increasing exploitation risk, although observed attempts reportedly failed to produce post-compromise activity.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.