CVE-2026-11858

UNKNOWN 0.0

Missing authorization in Quanos SCHEMA ST4 Client Update Service allows arbitrary file overwrite as SYSTEM

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Quanos SCHEMA ST4 on-premises contains a local privilege escalation vulnerability in the Client Update Service. The update service runs as NT AUTHORITY\SYSTEM and exposes a .NET Remoting interface over a named pipe without sufficient access controls or authorization. A local authenticated low-privileged user can connect to the interface and invoke privileged update methods such as Update(). This allows arbitrary file write and delete operations with SYSTEM privileges and can be used to achieve local privilege escalation.

CWE	CWE-862
Vendor	quanos solutions gmbh
Product	schema st4
Published	Jun 17, 2026

Stay Ahead of the Next One

Get instant alerts for quanos solutions gmbh schema st4

Be the first to know when new unknown vulnerabilities affecting quanos solutions gmbh schema st4 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Quanos Solutions GmbH / SCHEMA ST4

SCHEMA ST4 on-premises, all versions

References

NVD ↗ CVE.org ↗ EPSS Data ↗

r.sec-consult.com: https://r.sec-consult.com/quanos

Credits

Johannes Kruchem, SEC Consult Vulnerability Lab