CVE-2026-26050

High CVSS: 8.4

The installer for ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール versions prior to Ver.1.3.7 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrative privileges.

Vendor

Product

CWE

CWE-427

Yayın Tarihi

2026-02-20 09:15:54

Güncelleme

2026-02-20 13:49:47

Source Identifier

vultures@jpcert.or.jp

KEV Date Added

Kategoriler

CWE-427 HIGH 2026

Referanslar

https://jvn.jp/en/jp/JVN69531868/ https://support.ricoh.com/bbv2/html/dr_ut_d/ut/history/w/bb/pub_j/dr_ut_d/4101031/4101031555/V137/5260588/260588/history.htm