Home

Description

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges.

PUBLISHED Reserved 2026-02-25 | Published 2026-02-27 | Updated 2026-02-27 | Assigner jpcert




MEDIUM: 6.7CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

MEDIUM: 5.4CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Incorrect default permissions

Product status

V1.0.0
affected

V2.0.0 to V2.0.14
affected

V1.0.0 to V1.4.7
affected

References

www.soliton.co.jp/support/2026/006679.html

jvn.jp/en/jp/JVN41357120/

cve.org (CVE-2026-27653)

nvd.nist.gov (CVE-2026-27653)

Download JSON