Primary

Context

MOTEX Lanscope Endpoint Manager On-Premises Path Traversal Vulnerability Allowing Remote Code Execution

Vulnerability

A path traversal vulnerability has been identified in MOTEX Lanscope Endpoint Manager (On-Premises) Sub-Manager Server versions through 9.4.7.3. This vulnerability may allow an attacker to manipulate arbitrary files on the system and execute arbitrary code.

Impact

Exploitation of this vulnerability could lead to unauthorized file manipulation and arbitrary code execution on the affected Windows system.

Remediation

Users are advised to update Lanscope Endpoint Manager (On-Premises) to version 9.4.8.0 or later. For those on Windows Server 2012 or SQL Server 2014, versions 9.4.4.7 or 9.4.6.4 are available as temporary measures. Instructions for the update can be found on the Lanscope Portal, accessible with an ID and password.

Added: Feb 25, 2026, 6:24 AM

Updated: Feb 25, 2026, 6:24 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

7.4

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

7.4

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MOTEX Lanscope Endpoint Manager On-Premises Path Traversal Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating