Skip to main content

Upkeeper Instant Privilege Access CVE-2026-2450

| EUVDEUVD-2026-22249 HIGH
.NET Misconfiguration: Use of Impersonation (CWE-520)
2026-04-14 upKeeper GHSA-xgq8-f73q-q3gm
7.4
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:L/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:L/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

5
Re-analysis Queued
Apr 17, 2026 - 15:37 vuln.today
cvss_changed
Analysis Generated
Apr 14, 2026 - 15:25 vuln.today
EUVD ID Assigned
Apr 14, 2026 - 12:45 euvd
EUVD-2026-22249
Analysis Generated
Apr 14, 2026 - 12:45 vuln.today
CVE Published
Apr 14, 2026 - 12:07 nvd
HIGH 7.4

DescriptionCVE.org

.NET misconfiguration: use of impersonation vulnerability in upKeeper Solutions upKeeper Instant Privilege Access allows Hijacking a Privileged Thread of Execution.This issue affects upKeeper Instant Privilege Access: through 1.5.0.

AnalysisAI

Misconfigured .NET impersonation in upKeeper Instant Privilege Access through version 1.5.0 enables authenticated remote attackers to hijack privileged execution threads, leading to high confidentiality and integrity impact on underlying system resources. The vulnerability requires low-level privileges and presents network-based attack vector with high complexity. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate with low privileges
Delivery
Enumerate impersonation contexts
Exploit
Identify vulnerable thread timing window
Execution
Inject malicious operations into privileged thread
Persist
Execute code with elevated system context
Impact
Access sensitive resources or disrupt availability

Vulnerability AssessmentAI

Exploitation Authenticated user with low-privilege access to upKeeper Instant Privilege Access versions through 1.5.0. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk assessment reveals moderate-to-high priority requiring careful evaluation. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker with low-level privileges gains network access to the upKeeper Instant Privilege Access application and identifies specific timing windows or configuration states where .NET impersonation contexts are exposed. By crafting requests that interact with privileged execution threads during vulnerable impersonation operations, the attacker hijacks these threads to execute operations with elevated system privileges, potentially accessing sensitive data, modifying critical configurations, or disrupting availability of underlying infrastructure components. …
Remediation Organizations should upgrade upKeeper Instant Privilege Access to a version later than 1.5.0 that addresses the .NET impersonation misconfiguration, per the vendor advisory at https://support.upkeeper.se/hc/en-us/articles/26783542353692-CVE-2026-2450-NET-misconfiguration-use-of-impersonation. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all upKeeper Instant Privilege Access deployments and document current version across the environment. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-2450 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy