HIGHCVE-2026-26306Published Modified CNA jpcert
CVE-2026-26306: The installer for OM Workspace (Windows Edition) Ver 2
The installer for OM Workspace (Windows Edition) Ver 2.4 and earlier insecurely loads Dynamic Link Libraries (DLLs), which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer.
Metrics
- CVSS v4.0
- 8.4
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
Affected packages
- OM Digital Solutions Corporation / OM Workspace (Windows Edition)Ver 2.4 and earlier
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NReferences