Local Privilege Escalation Vulnerability in Quanos SCHEMA ST4 On-Premises
CVE-2026-11857

8.4HIGH

Key Information:

Vendor: Quanos Solutions Gmbh
Status: Schema St4
Vendor: CVE Published:; 17 June 2026

🔔 Create Quanos Solutions Gmbh Vulnerability Alert

What is CVE-2026-11857?

Quanos SCHEMA ST4 on-premises contains a local privilege escalation issue within its Client Update Service, primarily caused by insecure deserialization processes in the .NET Remoting service. The vulnerability arises due to the service's configuration with TypeFilterLevel.Full, which allows authenticated local users to exploit the service. By connecting through local named pipes, an attacker can access the .NET Remoting endpoint and transmit specially crafted serialized objects. If successful, this results in arbitrary code execution with the highest privileges, specifically NT AUTHORITY\SYSTEM, during the update process. Remote attacks are not feasible; therefore, access requires an authenticated user session on the local host.

Affected Version(s)

SCHEMA ST4 SCHEMA ST4 on-premises, all versions

References

https://r.sec-consult.com/quanos

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Jun 10, 2026

Credit

Johannes Kruchem, SEC Consult Vulnerability Lab

CVE-2026-11857 Data

JSON