Primary

Context

Changing IDExpert Windows Logon Agent Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in the IDExpert Windows Logon Agent, specifically in versions 2.7.3.230719 through 2.8.4.250925. This vulnerability allows unauthenticated remote attackers to compel the system to download and execute arbitrary executable files or DLLs from a remote source. The issue arises from a default configuration problem in the WinLogon installation package, which could be exploited by malicious actors.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Remediation

Users of the IDExpert Windows Logon Agent should immediately update to the latest version. A patch is available for download on the Changing Technology website. Instructions for applying the patch can be found in the provided README document.

Added: Mar 2, 2026, 7:20 AM

Updated: Mar 2, 2026, 7:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Changing IDExpert Windows Logon Agent Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating