Progress Software Kemp LoadMaster delapikey OS Command Injection Remote Code Execution Vulnerability

Progress Software's Kemp LoadMaster contains a remote code execution vulnerability (CVE-2025-13447) that allows authenticated attackers to execute arbitrary code on affected systems with a CVSS score of 6.8. An attacker with valid credentials can exploit this flaw to gain control of the load balancer and potentially compromise network traffic or connected systems. Security teams should prioritize patching Kemp LoadMaster installations, implement strong access controls to limit authentication to trusted users, and monitor for any suspicious activity from authenticated sessions.