[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:progress-kemp-loadmaster-pre-auth-rce-flaw-faces-active-exploitation-attempts-mr44499b":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":13,"action_required":18,"article_ids":19,"ioc_summary":21,"source_urls":22,"status":24,"expires_at":25,"created_at":26,"updated_at":27,"articles":28},"9f9a6298-7cab-4018-baa8-2f5b0072773f","Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts","progress-kemp-loadmaster-pre-auth-rce-flaw-faces-active-exploitation-attempts-mr44499b","A critical pre-auth RCE vulnerability (CVE-2026-8037, CVSS 9.6) in Progress Kemp LoadMaster is actively being exploited. The flaw allows unauthenticated attackers to execute arbitrary OS commands via the \u002Faccessv2 API endpoint. Any organization running Kemp LoadMaster is at immediate risk.","critical","advisory",[12],"CVE-2026-8037",[14,15,16,17],"Progress Software","Kemp LoadMaster","eSentire","watchTowr Labs","Identify all Kemp LoadMaster instances in your environment immediately. Apply the latest security patch from Progress. Block the three known attacker IPs if detected in logs. Monitor \u002Faccessv2 API endpoint for suspicious requests and command execution activity.",[20],"77c7a6dd-9647-4c2b-9a82-08e2e4cb3a15",null,[23],"https:\u002F\u002Fthehackernews.com\u002F2026\u002F07\u002Flatest-progress-kemp-loadmaster-pre.html","active","2026-07-04T23:05:12.245+00:00","2026-07-02T23:05:15.090512+00:00","2026-07-02T23:05:19.175995+00:00",[29],{"id":20,"title":6,"url":23}]