Home / Vulnerability Intelligence / CVE-2026-2999

CVE-2026-2999 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 2, 2026

Changing IDExpert Windows Logon Agent - Remote Code Execution

Published: March 2, 2026Updated: March 2, 2026Remote Exploitable

Overview

Changing IDExpert Windows Logon Agent contains a remote code execution vulnerability caused by the ability to download and execute arbitrary files from a remote source, letting unauthenticated remote attackers execute code remotely, exploit requires no authentication.

Severity & Score

Severity: Critical

CVSS Score: 9.8

EPSS Score: 10.2%(Probability of exploitation in next 30 days)

Impact

Unauthenticated remote attackers can execute arbitrary code, potentially leading to full system compromise.

Mitigation

Update to the latest version.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 2, 2026

🔴 CVE-2026-2999 - Critical (9.8) IDExpert Windows Logon Agent developed by Changing has a Remote Code Execution vulnerability, allowing unauthenticated remote attackers to force the system to download arbitrary executable files from a remote source and execute them. 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2999/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-2999
Severity: Critical
CVSS Score: 9.8
Type: remote_code_execution
Status: unconfirmed
EPSS: 10.2%
Social Posts: 1

CWE

CWE-494

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

10.2%Probability of exploitation in the next 30 days