Because O+ Connect's IPC service does not authenticate...
High severity
Unreviewed
Published
Jun 29, 2026
to the GitHub Advisory Database
•
Updated Jun 29, 2026
Description
Published by the National Vulnerability Database
Jun 29, 2026
Published to the GitHub Advisory Database
Jun 29, 2026
Last updated
Jun 29, 2026
Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges and perform sensitive actions through the IPC channel.
References