Breaking
Trump administration is allegedly collecting $10 billion on the TikTok deal
Father & son accused of concealing homicide suspect in Abilene
Meta is reportedly laying off up to 20 percent of its staff
Buffy: New Sunnydale Continuation Series Scrapped, Sarah Michelle Gellar Confirms
Canterbury town meeting progresses with congeniality, efficiency and some humor
Boscawen voters address bus service concerns
Hulu, Disney Plus, and the Pixel Watch 4 are among this week’s best deals
Prediction markets want the Oscars to be your gateway drug to betting on everything
MacBook Air M5 review: a small update for the ‘just right’ Mac
Zendesk to acquire Forethought AI to drive autonomous AI agents
14 Mar 2026, Sat
Launch Your Site in 5 Minutes
Cyber Security News

LANSCOPE Endpoint Manager Vulnerability Allows Attackers to Execute Remote Code

By rssfeeds-admin No Comments
LANSCOPE Endpoint Manager Vulnerability Allows Attackers to Execute Remote Code
LANSCOPE Endpoint Manager Vulnerability Allows Attackers to Execute Remote Code
A critical remote code execution vulnerability has been discovered in the on-premise edition of LANSCOPE Endpoint Manager that allows unauthenticated attackers to run arbitrary commands with high privileges on affected systems.

Tracked as CVE-2025-61932, the flaw impacts both the Client Program (MR) and the Detection Agent (DA) in version 9.4.7.1 and earlier.

Real-world exploit attempts have already been observed, making prompt patching imperative.

Vulnerability Details

Security researchers found that specially crafted network packets sent to computers running the vulnerable on-premise software trigger a severe error in the MR client and DA detection agent.

This error bypasses all user interaction requirements no clicks or email openings are needed granting attackers direct, high-privilege code execution on target machines.

Evidence indicates that malicious packets exploiting this weakness have been delivered to customer networks in live environments.

Only the On-Premise Edition of LANSCOPE Endpoint Manager is affected; the Cloud Edition remains unaffected.

Both core components, Client Program (MR) and Detection Agent (DA), in version 9.4.7.1 and earlier, contain the vulnerability.

Organizations using the on-premise solution face an immediate risk until they apply the update.

A security update addressing this issue is now available on the official LANSCOPE support portal.

Because the vulnerability resides entirely in client-side software, every endpoint running the on-premise edition must be updated.

The patch uses the same procedure as a regular software upgrade for the MR client and DA agent; no manager console upgrade is required.

Administrators should schedule an immediate rollout of the patch and monitor networks for any unusual incoming packets targeting these agents.

CVE Summary Table

CVE ID Product CVSS 3.0 Score
CVE-2025-61932 LANSCOPE Endpoint Manager On-Premise Edition 9.8

Ensure all on-premise client PCs are updated without delay to eliminate the exploitation window presented by this severe flaw.

Cyber Awareness Month Offer: Upskill With 100+ Premium Cybersecurity Courses From EHA's Diamond Membership: Join Today

The post LANSCOPE Endpoint Manager Vulnerability Allows Attackers to Execute Remote Code appeared first on Cyber Security News.

Discover more from RSS Feeds Cloud

Subscribe to get the latest posts sent to your email.

By rssfeeds-admin

Related Posts

Cyber Security News

Malicious npm Campaign Impersonates Solara Executor to Steal Discord and Crypto Wallet Data

rssfeeds-admin
Cyber Security News

Malicious npm Packages Posing as Solara Executor Target Discord, Browsers, and Crypto Wallets

rssfeeds-admin
Cyber Security News

GlassWorm Campaign Uses 72 Malicious Open VSX Extensions to Broaden Reach

rssfeeds-admin

You Missed

The Verge

Trump administration is allegedly collecting $10 billion on the TikTok deal

Texas News

Father & son accused of concealing homicide suspect in Abilene

The Verge

Meta is reportedly laying off up to 20 percent of its staff

IGN

Buffy: New Sunnydale Continuation Series Scrapped, Sarah Michelle Gellar Confirms

Discover more from RSS Feeds Cloud

Subscribe now to keep reading and get access to the full archive.

Continue reading