Severity: 7.2 High (7.0-8.9)
CVE ID: CVE-2026-2450
Details
This advisory address a vulnerability where any user from anywhere can send information to upKeeper Instant Privilege Access client service running on a local computer.
Problem type: CWE-520
Impact: CAPEC-30
Applicability
This advisory is applicable only when
| Product Name | Impacted Version(s) | Fixed Version(s) | Released On |
|---|---|---|---|
| upKeeper Instant Privilege Access | through 1.5.0 | 1.6.0.4576 | 2026-03-05 |
Impact
This vulnerability allows users to send and collect information from a computer running upKeeper Instant Privilege Access client service.
Fix
This issue has been fixed by updating upKeeper Instant Privilege Access client to 1.6.0.4576 version or later.
Acknowledgements
This vulnerability was reported by Tony Nilsson.
Please contact our security team (secure@upkeeper.se) for security related questions and product support (help@upkeeper.se) for questions about our products or services.
Comments
0 comments
Article is closed for comments.