HIGHCVE-2026-34488Published 2026-04-23Modified 2026-04-23CNA jpcert

CVE-2026-34488: IP Setting Software contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries

IP Setting Software contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrative privileges.

CVSS v4.0: 7.0
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

i-PRO Co., Ltd. / IP Setting Software
prior to V5.20

CVSS Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

i-pro.com
jvn.jp

Metrics