HarborGuard / CVE
Back to search
HIGHCVE-2026-32680Published Modified CNA jpcert

CVE-2026-32680: The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder

The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder. If the installation folder is customized to some non-default one, the folder may be left with un-secure ACLs and non-administrative users can alter contents of that folder. It may allow a non-administrative user to execute an arbitrary code with SYSTEM privilege.

Metrics

CVSS v4.0
8.5
Severity
HIGH
Fixed in
Affected Products
1
Affected packages
  • RATOC Systems, Inc. / RATOC RAID Monitoring Manager for Windows
    prior to 2.00.009.260220
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References
CVE-2026-32680: The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder | HarborGuard CVE