CVE-2026-56437 PUBLISHED

Assigner: jpcert
Reserved: 28.06.2026 Published: 08.07.2026 Updated: 08.07.2026

Uncontrolled search path element issue exists in Pupsman versions prior to 3.9.0. If a crafted DLL file is placed in the same folder as the affected installer and the installer is executed, arbitrary code may be executed with SYSTEM privilege.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.4

Product Status

Vendor Fuji Electric Co.,Ltd.
Product Pupsman
Versions
  • Version prior to 3.9.0 is affected

References

Problem Types