🔴 Critical  |  Source: The Hacker News


A critical pre-authentication remote code execution vulnerability (CVE-2026-8037, CVSS 9.6) in Progress Kemp LoadMaster is being actively exploited in the wild. The flaw is an OS command injection issue that attackers can trigger without needing valid credentials, making it particularly dangerous. LoadMaster is a widely used application delivery and load balancing solution, meaning exploitation could expose network infrastructure and backend services.

Security Architect’s Take: If you have internet-facing Kemp LoadMaster instances, apply the vendor patch immediately and review access logs for exploitation indicators flagged by eSentire’s TRU advisory. Consider restricting management interface access to trusted IP ranges or placing it behind a VPN as an interim control if patching cannot be completed immediately.

Original advisory: Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts