High severity7.2NVD Advisory· Published Apr 27, 2022· Updated Jun 17, 2026
CVE-2022-27905
CVE-2022-27905
Description
In ControlUp Real-Time Agent before 8.6, an unquoted path can result in privilege escalation. An attacker would require write permissions to the root level of the OS drive (C:\) to exploit this.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ControlUp/Real-Time Agentdescription
- Range: <8.6
Patches
Vulnerability mechanics
References
1- www.controlup.com/security/cve-2022-27905/nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.