Security Advisory

CVE-2026-24466

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-09 06:59:30

Last updated 2026-02-09 15:43:46

Assigner jpcert

State PUBLISHED

Description

Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.

← Browse all CVEs View on cve.org ↗