All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Critical Pre-Auth RCE Vulnerability (CVE-2026-8037) Discovered in Progress Kemp LoadMaster — CVSS 9.8

By

HackMoN Ai

2h ago· 5 min readenNews

Summary

A critical vulnerability (CVE-2026-8037) has been disclosed in Progress Kemp LoadMaster, a widely used load balancer and Application Delivery Controller (ADC). The flaw enables unauthenticated remote attackers to execute arbitrary commands with root privileges via a crafted API request, stemming from improper input sanitization and an uninitialized-memory bug. With a CVSS score of 9.8, this pre-authentication Remote Code Execution (RCE) vulnerability poses severe risk to affected appliances and organizations are urged to patch immediately.

Source

bskyCritical Pre-Auth RCE Vulnerability (CVE-2026-8037) Discovered in Progress Kemp LoadMaster — CVSS 9.8undercodetesting.com

Key quotes

· 3 pulled
A newly disclosed critical vulnerability in Progress Kemp LoadMaster, tracked as CVE-2026-8037, allows unauthenticated remote attackers to execute arbitrary commands with root privileges on affected appliances via a crafted API request.
With a CVSS score of 9.8, this pre-authentication Remote Code Execution (RCE) flaw stems from improper input sanitization and an uninitialized-memory bug in LoadMaster's API handling.
Given that LoadMaster is a widely deployed edge load balancer and Application Delivery Controller (ADC), this vulnerability exposes
Snippet from the RSS feed
Critical Progress Kemp LoadMaster Vulnerability Enables Pre-Auth Remote Code Execution – Patch Now Before Attackers Do + Video - "Undercode Testing": Monitor

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.