CVE-2026-50255_CVE-2026-50255

6.7 / 10

MEDIUM

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Description

Incorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and earlier. If this vulnerability is exploited, arbitrary code may be executed with SYSTEM privileges.

Basic Information

ID CVE-2026-50255

Source jpcert

Published Jun 16, 2026 at 05:03

Affected Product

Vendor Sony Corporation

Product Optical Disc Archive Software for Windows

Version 5.5.3 and earlier

Affected Versions Sony Corporation Optical Disc Archive Software for Windows 5.5.3 and earlier

CWE Classification

CWE-276

References

{
    "lastseen": "",
    "description": "Incorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and earlier. If this vulnerability is exploited, arbitrary code may be executed with SYSTEM privileges.",
    "published": "2026-06-16T05:03:53.304Z",
    "modified": "2026-06-16T05:03:53.304Z",
    "type": "cve",
    "title": "CVE-2026-50255",
    "source": "jpcert",
    "references": "https://www.sony.com/electronics/support/software/00403421\nhttps://jvn.jp/en/jp/JVN79926428/",
    "id": "CVE-2026-50255",
    "bulletinFamily": "",
    "cwe": [
        "CWE-276"
    ],
    "cvelist": null,
    "sourceData": "Sony Corporation Optical Disc Archive Software for Windows 5.5.3 and earlier",
    "sourceHref": "",
    "cvss": {
        "score": 6.7,
        "severity": "MEDIUM",
        "vector": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Optical Disc Archive Software for Windows",
    "version": "5.5.3 and earlier",
    "vendor": "Sony Corporation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}