CVE-2026-50255 | THREATINT

Description

Incorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and earlier. If this vulnerability is exploited, arbitrary code may be executed with SYSTEM privileges.

PUBLISHED Reserved 2026-06-09 | Published 2026-06-16 | Updated 2026-06-16 | Assigner jpcert

MEDIUM: 6.7CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

MEDIUM: 5.4CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Incorrect default permissions

Product status

5.5.3 and earlier

affected

References

www.sony.com/electronics/support/software/00403421

jvn.jp/en/jp/JVN79926428/

cve.org (CVE-2026-50255)

nvd.nist.gov (CVE-2026-50255)

Download JSON