What is GHSA-57pc-jm9r-hgj4?

GHSA-57pc-jm9r-hgj4 is a security advisory published by GitHub Security Advisories with Critical severity. OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows...

Which CVE IDs does GHSA-57pc-jm9r-hgj4 cover?

GHSA-57pc-jm9r-hgj4 covers the following CVE IDs: CVE-2026-8037. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-57pc-jm9r-hgj4?

GHSA-57pc-jm9r-hgj4 has a CVSS v3 base score of 9.6, published by GitHub Security Advisories.

GHSA-57pc-jm9r-hgj4CriticalCVSS 9.6

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows...

Vendor

GitHub Security Advisories

Published

June 4, 2026

Last Modified

June 4, 2026

🔗 CVE IDs covered (1)

CVE-2026-8037 →

📋 Description

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-8037
https://community.progress.com/s/article/LoadMaster-Critical-Security-Bulletin-June-2026-CVE-2026-8037-CVE-2026-33691
https://github.com/advisories/GHSA-57pc-jm9r-hgj4