[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-8037":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":52,"aliases":53,"duplicate_of":9,"upstream":54,"downstream":55,"duplicates":56,"related":57,"reserved_at":9,"published_at":58,"modified_at":58,"state":59,"summary":60,"references_raw":67,"kevs":74,"epss":9,"epss_history":75,"metrics":76,"affected":84},"CVE-2026-8037","OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-77","Improper Neutralization of Special Elements used in a Command ('Command Injection')","The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.","weakness","Draft","Class","High",[20,24,28,32,36,40,44,48],{"id":21,"name":22,"techniques":23},"CAPEC-136","LDAP Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-15","Command Delimiters",[],{"id":29,"name":30,"techniques":31},"CAPEC-183","IMAP/SMTP Command Injection",[],{"id":33,"name":34,"techniques":35},"CAPEC-248","Command Injection",[],{"id":37,"name":38,"techniques":39},"CAPEC-40","Manipulating Writeable Terminal Devices",[],{"id":41,"name":42,"techniques":43},"CAPEC-43","Exploiting Multiple Input Interpretation Layers",[],{"id":45,"name":46,"techniques":47},"CAPEC-75","Manipulating Writeable Configuration Files",[],{"id":49,"name":50,"techniques":51},"CAPEC-76","Manipulating Web Input to File System Calls",[],[],[],[],[],[],[],"2026-06-04T13:13:45.793Z","Awaiting Analysis",{"cisa_kev":61,"cisa_ransomware":61,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":62,"severity_score":63,"severity_version":64,"severity_source":65,"severity_vector":66,"severity_status":59},false,"critical",9.6,"v3.1","cve.org","CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",[68],{"url":69,"sources":70,"tags":72},"https://community.progress.com/s/article/LoadMaster-Critical-Security-Bulletin-June-2026-CVE-2026-8037-CVE-2026-33691",[65,71],"nvd",[73],"Vendor Advisory",[],[],[77,82],{"source":65,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":78,"cvss_v4_0":9},{"baseScore":63,"baseSeverity":79,"vectorString":66,"impactScore":80,"exploitabilityScore":81},"CRITICAL",10,7.2,{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":83,"cvss_v4_0":9},{"baseScore":63,"baseSeverity":79,"vectorString":66,"impactScore":80,"exploitabilityScore":81},[85,98,107,112],{"ecosystem":9,"name":86,"vendor":87,"product":88,"cpe_part":89,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":90},"ECS Connections Manager","progress software","ecs connections manager","a",[91],{"version":92,"is_range":93,"range_type":65,"version_start":94,"version_start_type":95,"version_end":96,"version_end_type":97,"fixed_in":9},">= V7.2.60.0, \u003C V7.2.63.2",true,"V7.2.60.0","including","V7.2.63.2","excluding",{"ecosystem":9,"name":99,"vendor":87,"product":100,"cpe_part":89,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":101},"LoadMaster","loadmaster",[102,103],{"version":92,"is_range":93,"range_type":65,"version_start":94,"version_start_type":95,"version_end":96,"version_end_type":97,"fixed_in":9},{"version":104,"is_range":93,"range_type":65,"version_start":105,"version_start_type":95,"version_end":106,"version_end_type":97,"fixed_in":9},">= V7.2.45.12, \u003C V7.2.54.18","V7.2.45.12","V7.2.54.18",{"ecosystem":9,"name":108,"vendor":87,"product":109,"cpe_part":89,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":110},"MOVEit WAF","moveit waf",[111],{"version":92,"is_range":93,"range_type":65,"version_start":94,"version_start_type":95,"version_end":96,"version_end_type":97,"fixed_in":9},{"ecosystem":9,"name":113,"vendor":87,"product":114,"cpe_part":89,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":115},"Object Scale Connection Manager","object scale connection manager",[116],{"version":92,"is_range":93,"range_type":65,"version_start":94,"version_start_type":95,"version_end":96,"version_end_type":97,"fixed_in":9}]