8.4
CVE-2026-32679
- EPSS 0.16%
- Veröffentlicht 23.04.2026 00:02:05
- Zuletzt bearbeitet 18.05.2026 17:04:05
- Quelle vultures@jpcert.or.jp
- CVE-Watchlists
- Unerledigt
LoginThe installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network Camera Plugin (CanonNWCamPlugin.exe and CanonNWCamPluginForAdmin.exe) insecurely load Dynamic Link Libraries (DLLs). If a malicious DLL is placed at the same directory, the affected installer may load that DLL and execute its code with the privilege of the user invoking the installer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Liveon ≫ Canonnwcamplugin.Exe Version1.0.0.0 SwPlatformwindows
Liveon ≫ Canonnwcampluginforadmin.Exe Version1.0.0.0 SwPlatformwindows
Liveon ≫ Downloader5installer.Exe Version1.0.0.0 SwPlatformwindows
Liveon ≫ Downloader5installerforadmin.Exe Version1.0.0.0 SwPlatformwindows
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.055 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| vultures@jpcert.or.jp | 8.4 | 0 | 0 |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| vultures@jpcert.or.jp | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-427 Uncontrolled Search Path Element
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
https://web.liveon.ne.jp/wp-content/uploads/2026/04/JMSSA2026-001.pdf
https://jvn.jp/en/jp/JVN45563482/