Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 08 Jul 2026 21:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Local Arbitrary Code Execution via Improper Permissions in Pupsman |
Wed, 08 Jul 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 08 Jul 2026 05:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Incorrect default permissions issue exists in Pupsman versions prior to 3.9.0. An attacker can place a malicious executable in the installation folder, which results in arbitrary code execution with SYSTEM privilege | |
| Weaknesses | CWE-276 | |
| References |
| |
| Metrics |
cvssV3_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: jpcert
Published:
Updated: 2026-07-08T12:57:19.539Z
Reserved: 2026-06-28T23:50:03.923Z
Link: CVE-2026-57895
Updated: 2026-07-08T12:57:05.618Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-08T20:45:07Z