CVE-2026-28760_CVE-2026-28760

7.8 / 10

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

The installer of RATOC RAID Monitoring Manager for Windows searches the current directory to load certain DLLs. If a user is directed to place a crafted DLL with the installer, an arbitrary code may be executed with the administrator privilege.

Basic Information

ID CVE-2026-28760

Source jpcert

Published Mar 26, 2026 at 06:54

Modified Mar 26, 2026 at 14:17

Affected Product

Vendor RATOC Systems, Inc.

Product RATOC RAID Monitoring Manager for Windows

Version prior to 2.00.009.260220

Affected Versions RATOC Systems, Inc. RATOC RAID Monitoring Manager for Windows prior to 2.00.009.260220

CWE Classification

CWE-427

References

{
    "lastseen": "",
    "description": "The installer of RATOC RAID Monitoring Manager for Windows searches the current directory to load certain DLLs. If a user is directed to place a crafted DLL with the installer, an arbitrary code may be executed with the administrator privilege.",
    "published": "2026-03-26T06:54:59.213Z",
    "modified": "2026-03-26T14:17:16.467Z",
    "type": "cve",
    "title": "CVE-2026-28760",
    "source": "jpcert",
    "references": "https://www.ratocsystems.com/topics/userinfo/raidmanager202508/\nhttps://jvn.jp/en/jp/JVN08057419/",
    "id": "CVE-2026-28760",
    "bulletinFamily": "",
    "cwe": [
        "CWE-427"
    ],
    "cvelist": null,
    "sourceData": "RATOC Systems, Inc. RATOC RAID Monitoring Manager for Windows prior to 2.00.009.260220",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "RATOC RAID Monitoring Manager for Windows",
    "version": "prior to 2.00.009.260220",
    "vendor": "RATOC Systems, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}