HIGHCVE-2026-28760Published 2026-03-26Modified 2026-03-26CNA jpcert

CVE-2026-28760: The installer of RATOC RAID Monitoring Manager for Windows searches the current directory to load certain DLLs

The installer of RATOC RAID Monitoring Manager for Windows searches the current directory to load certain DLLs. If a user is directed to place a crafted DLL with the installer, an arbitrary code may be executed with the administrator privilege.

CVSS v4.0: 8.4
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

RATOC Systems, Inc. / RATOC RAID Monitoring Manager for Windows
prior to 2.00.009.260220

CVSS Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

ratocsystems.com
jvn.jp

Metrics