AI Score
Confidence
High
EPSS
Percentile
13.1%
An unauthenticated Named Pipe channel in Controlup Real-Time Agent (cuAgent.exe) before 8.5 potentially allows an attacker to run OS commands via the ProcessActionRequest WCF method.
controlup.com
www.controlup.com/security/security-advisory-local-privilege-escalation/