{"uuid": "b3131cf7-be98-4065-8c7e-69925bd20637", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8037", "type": "seen", "source": "https://infosec.exchange/ap/users/116769913619325742/statuses/116856800011935767", "content": "\ud83d\udd34 EXPLOITED\nProgress Kemp LoadMaster has an unauthenticated flaw (CVE-2026-8037) that runs commands as root through its management API.\nIt is now being exploited, and a public exploit is out.\nFix: update to GA 7.2.63.2 or LTSF 7.2.54.18, and take the API off the internet.\nhttps://suriq.io/blog/kemp-loadmaster-cve-2026-8037-exploited\n#CVE #Phishing #infosec #cybersecurity", "creation_timestamp": "2026-07-03T15:41:14.543263Z"}