Security Advisory

CVE-2026-33253

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-25 05:11:53

Last updated 2026-03-25 13:28:29

Assigner jpcert

State PUBLISHED

Description

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.

← Browse all CVEs View on cve.org ↗