3 matches found
Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
A critical vulnerability in Progress Kemp LoadMaster can let an unauthenticated attacker execute arbitrary commands as root on the appliance by sending a crafted request to its API. The flaw, tracked as CVE-2026-8037 , carries a CVSS score of 9.8 according to ZDI. A patch is available. If you run...
CVE-2026-8037
creationtimestamp| type| source ---|---|--- 2026-06-05 10:19:13+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/progress-security-advisory-av26-552 2026-06-05 22:22:23+00:00| seen| https://social.tchncs.de/users/gborn/statuses/116699833514512441 2026-06-29 19:28:11+00:00| seen|...
CVE-2026-8037
OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints...