CVE-2026-8037

Confirmed PUBLISHED

OS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager & MOVEit WAF

Progress Software · LoadMaster, ECS Connections Manager, Object Scale Connection Manager, MOVEit WAF

Not yet in CISA KEV

Exploited in the wild Active exploitation observed PoC available Virtual patch available

Recommended Action

Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.

Confidence
Confirmed
Exploitation Status
Active exploitation observed
Observed in Sensors
Yes
Attempts (30d)
730
Unique Attacker IPs
57
CISA KEV
Not yet in CISA KEV
Virtual Patch
Yes 3 targets
CVSS / EPSS
9.6 Critical EPSS 43.4%

At a Glance

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints

nuclei_scanner
CVE Published
Jun 04, 2026
Exploited Since
Jun 30, 2026
CVSS
9.6 Critical
EPSS
43.4%
Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
Progress Software
LoadMaster

V7.2.60.0 to < V7.2.63.2

Affected
Progress Software
LoadMaster

V7.2.45.12 to < V7.2.54.18

Affected
Progress Software
ECS Connections Manager

V7.2.60.0 to < V7.2.63.2

Affected
Progress Software
Object Scale Connection Manager

V7.2.60.0 to < V7.2.63.2

Affected
Progress Software
MOVEit WAF

V7.2.60.0 to < V7.2.63.2

Affected

CVE References

Recommended Actions

  • Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.
  • Review sensor telemetry for request paths, attacker IPs, and payload patterns that may inform detection and exposure validation.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.