An unauthenticated Named Pipe channel in Controlup Real-Time Agent (cuAgent.exe) before 8.5 potentially allows an attacker to run OS commands via the ProcessActionRequest WCF method.
CPE | Name | Operator | Version |
---|---|---|---|
real-time_agent | lt | 8.5 | |
real-time_agent | lt | 8.5 |