CVE-2026-2449

Privilege Escalation via Argument Injection in upKeeper Instant Privilege Access

Description

Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in upKeeper Solutions upKeeper Instant Privilege Access allows Hijacking a Privileged Thread of Execution.This issue affects upKeeper Instant Privilege Access: through 1.5.0.

INFO

Published Date :

2026-04-14T11:56:04.741Z

Last Modified :

2026-04-14T13:14:16.593Z

Source :

upKeeper

AFFECTED PRODUCTS

The following products are affected by CVE-2026-2449 vulnerability.

Vendors	Products
Upkeeper Solutions	Upkeeper Instant Privlege Access

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-2449.

URL	Resource
https://support.upkeeper.se/hc/en-us/articles/26783425404444-CVE-2026-2449-Improper-neutralization-of-argument-delimiters-in-a-command

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability