CVE-2026-57895 is an incorrect default permissions issue in Pupsman versions prior to 3.9.0. An attacker can place a malicious executable in the installation folder, resulting in arbitrary code execution with SYSTEM privilege. This vulnerability has a high impact on the affected systems, and users should apply the patch to prevent arbitrary code execution. The vulnerability exists due to incorrect default [truncated]
HIGHFuji Electric Co.,Ltd.CVE published 2026-07-08
CVE-2026-56437 is an uncontrolled search path element issue in Pupsman versions prior to 3.9.0. If a crafted DLL file is placed in the same folder as the affected installer and the installer is executed, arbitrary code may be executed with SYSTEM privilege. This vulnerability has a high impact on affected systems and requires immediate attention from users of Pupsman versions prior to 3.9.0. The vulnerabi [truncated]