Tony Nilsson

**Name of the Vulnerable Software and Affected Versions** upKeeper Instant Privilege Access versions prior to 1.5.0 **Description** Improper neutralization of argument delimiters in a command, known as argument injection, allows low-privilege users to hijack a privileged thread of execution. This can lead to privilege escalation across systems, potentially granting root access. **Recommendations** Update to a version newer than 1.5.0.

**Name of the Vulnerable Software and Affected Versions** upKeeper Instant Privilege Access versions prior to 1.5.0 **Description** A .NET misconfiguration involving the use of impersonation allows for the hijacking of a privileged thread of execution. **Recommendations** Update to a version newer than 1.5.0.