H-ISAC TLP White Threat: Observed Exploitation Attempts Targeting Critical Progress Kemp LoadMaster Vulnerability

On June 29, 2026, eSentire’s Threat Response Unit (TRU) identified active, in-the-wild exploitation attempts targeting a critical flaw in Progress Kemp LoadMaster appliances, tracked as CVE-2026-8037. This tracking follows the public release of a functional Proof-of-Concept (PoC) exploit code on the same day, which significantly elevated the immediate threat landscape for exposed environments. 

Organizations using affected versions of the load balancer are urgently advised to verify their device configurations and apply the firmware patches to prevent unauthorized network entry.

Health-ISAC provides this information to increase situational awareness and encourage organizations to assess their risk exposure to this vulnerability.

View additional information below.

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

National Advisor for Cybersecurity and Risk, AHA

jriggi@aha.org

(O) +1 202 626 2272