Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth

A critical vulnerability in Progress Kemp LoadMaster can let an unauthenticated attacker execute arbitrary commands as root on the appliance by sending a crafted request to its API.

The flaw, tracked as CVE-2026-8037, carries a CVSS score of 9.8 according to ZDI. A patch is available. If you run LoadMaster with the API enabled, update now.

Progress published its advisory on June

Source: The Hacker News

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

The Reversal Curse: LLMs trained on “A is B” fail to learn “B is A”

The Reversal Curse: LLMs trained on “A is B” fail to learn “B is A” Source: Hacker News

Read More

Ford rehires 350 engineers after AI fails to preserve expertise or train juniors

Ford rehires 350 engineers after AI fails to preserve expertise or train juniors Source: Hacker News

Read More

Anatomy of a Failed (Nation-State?) Attack

Anatomy of a Failed (Nation-State?) Attack Source: Hacker News

Read More