Skip to main content

Microsoft EUVDEUVD-2026-17534

| CVE-2026-2123 HIGH
Improper Handling of Insufficient Permissions or Privileges (CWE-280)
2026-03-31 OpenText
8.6
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.6 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
P
Scope
X

Lifecycle Timeline

3
EUVD ID Assigned
Mar 31, 2026 - 17:45 euvd
EUVD-2026-17534
Analysis Generated
Mar 31, 2026 - 17:45 vuln.today
CVE Published
Mar 31, 2026 - 17:18 nvd
HIGH 8.6

DescriptionCVE.org

A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of Oneconsult AG for reporting this vulnerability

AnalysisAI

Privilege escalation in OpenText Operations Agent versions 12.29 and earlier on Windows allows local attackers to execute arbitrary code by placing malicious executables in specific writeable directories, which the agent subsequently executes with elevated privileges. The vulnerability requires local access and specific conditions to be present but does not require prior authentication to the agent itself. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Place malicious executable in writable directory
Exploit
User interacts with Operations Agent
Execution
Agent executes attacker-controlled binary
Impact
Privilege escalation to SYSTEM context

Vulnerability AssessmentAI

Exploitation Requires local access to Windows system running Operations Agent version 12.29 or earlier. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment While a CVSS score is not provided, the vulnerability presents moderate-to-high real-world risk for Windows environments. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unprivileged local user on a Windows system running vulnerable Operations Agent identifies a writeable directory in the agent's executable search path (such as a temp folder, a shared directory, or an unprotected plugin location). The attacker places a malicious executable with a name the agent expects (e.g., a legitimate DLL or executable name), and when the agent performs a scheduled task or maintenance operation, it loads and executes the attacker's payload with system-level privileges. …
Remediation Update OpenText Operations Agent to a version later than 12.29 as soon as feasible. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-17534 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy