CVE-2026-1680 – Local Privilege Escalation in Local Admin Service

CVE ID : CVE-2026-1680

Published : Jan. 30, 2026, 6 a.m. | 1 hour, 10 minutes ago

Description : Improper access control in the WCF endpoint in Edgemo (now owned by Danoffice IT) Local Admin Service 1.2.7.23180 on Windows allows a local user to escalate their privileges to local administrator via direct communication with the LocalAdminService.exe named pipe, bypassing client-side group membership restrictions.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-12899 – net: icmp: Out of bound memory read

CVE-2026-0805 – Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) in Crafty Controller

CVE-2026-0963 – Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) in Crafty Controller

CVE-2026-25097 – Apache HTTP Server Unvalidated User Input