HIGHCVE-2026-24694Published 2026-02-03Modified 2026-02-03CNA jpcert

CVE-2026-24694: The installer for Roland Cloud Manager ver

The installer for Roland Cloud Manager ver.3.1.19 and prior insecurely loads Dynamic Link Libraries (DLLs), which could allow an attacker to execute arbitrary code with the privileges of the application.

CVSS v4.0: 8.4
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

Roland Corporation / Roland Cloud Manager
ver.3.1.19 and prior

CVSS Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

roland.com
jvn.jp

Metrics