Home

Description

The installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network Camera Plugin (CanonNWCamPlugin.exe and CanonNWCamPluginForAdmin.exe) insecurely load Dynamic Link Libraries (DLLs). If a malicious DLL is placed at the same directory, the affected installer may load that DLL and execute its code with the privilege of the user invoking the installer.

PUBLISHED Reserved 2026-04-20 | Published 2026-04-23 | Updated 2026-04-23 | Assigner jpcert




HIGH: 7.8CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

HIGH: 8.4CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Uncontrolled Search Path Element

Product status

Ver.1.0.0.0
affected

Ver.1.0.0.0
affected

Ver.1.0.0.0
affected

Ver.1.0.0.0
affected

References

web.liveon.ne.jp/...ontent/uploads/2026/04/JMSSA2026-001.pdf

jvn.jp/en/jp/JVN45563482/

cve.org (CVE-2026-32679)

nvd.nist.gov (CVE-2026-32679)

Download JSON