Primary

Context

upKeeper Solutions upKeeper Instant Privilege Access Improper Privilege Management Vulnerability

Vulnerability

A vulnerability allowing privilege abuse has been identified in upKeeper Solutions upKeeper Instant Privilege Access versions prior to 1.4.0. This issue arises from improper management of privilege elevation, where the system sometimes fails to revoke elevated rights after a restart, leaving users with uncontrolled access on all processes initiated post-login.

Impact

Exploitation of this vulnerability allows users to retain elevated privileges on processes started after logging into the local computer, potentially leading to unauthorized actions or access.

Remediation

Users can address this vulnerability by updating the upKeeper Instant Privilege Access agent to version 1.4.0 or later.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

upKeeper Solutions upKeeper Instant Privilege Access Improper Privilege Management Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating