Controlup Real-Time Agent is a real-time agent from Controlup, Inc. A command injection vulnerability exists in Controlup Real-Time Agent, which originates from an unauthenticated named pipe channel in Controlup Real-Time Agent, and can be exploited by attackers to Run OS commands via the ProcessActionRequest WCF method.