jvndb - jvndb-2026-011472

jvndb-2026-011472

Vulnerability from jvndb

Published

2026-04-17 14:54

Modified

2026-04-17 14:54

Summary

OMRON UPS (Uninterruptible Power Supply) management application may insecurely load Dynamic Link Libraries

Details

The UPS (Uninterruptible Power Supply) management application provided by OMRON Corporation may insecurely load Dynamic Link Libraries due to an issue with uncontrolled search path element (CWE-427, CVE-2026-5397). OMRON Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN.

References

Type

URL

	JVN	https://jvn.jp/en/vu/JVNVU94583735/index.html
	JVN	https://jvn.jp/en/ta/JVNTA91240916/
	CVE	https://www.cve.org/CVERecord?id=CVE-2026-5397
	Uncontrolled Search Path Element(CWE-427)	https://cwe.mitre.org/data/definitions/427.html

Impacted products

Vendor

Product

OMRON SOCIAL SOLUTIONS Co.,Ltd.

PowerAttendant Standard Edition

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-011472.html",
  "dc:date": "2026-04-17T14:54+09:00",
  "dcterms:issued": "2026-04-17T14:54+09:00",
  "dcterms:modified": "2026-04-17T14:54+09:00",
  "description": "The UPS (Uninterruptible Power Supply) management application provided by OMRON Corporation may insecurely load Dynamic Link Libraries due to an issue with uncontrolled search path element (CWE-427, CVE-2026-5397).\r\n\r\nOMRON Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN.",
  "link": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-011472.html",
  "sec:cpe": {
    "#text": "cpe:/a:omron_socilal_solutions:powerattendant_standard_edition",
    "@product": "PowerAttendant Standard Edition",
    "@vendor": "OMRON SOCIAL SOLUTIONS Co.,Ltd.\t",
    "@version": "2.2"
  },
  "sec:identifier": "JVNDB-2026-011472",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/vu/JVNVU94583735/index.html",
      "@id": "JVNVU#94583735",
      "@source": "JVN"
    },
    {
      "#text": "https://jvn.jp/en/ta/JVNTA91240916/",
      "@id": "JVNTA#91240916",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2026-5397",
      "@id": "CVE-2026-5397",
      "@source": "CVE"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/427.html",
      "@id": "CWE-427",
      "@title": "Uncontrolled Search Path Element(CWE-427)"
    }
  ],
  "title": "OMRON UPS (Uninterruptible Power Supply) management application may insecurely load Dynamic Link Libraries"
}

CVE-2026-5397 (GCVE-0-2026-5397)

Vulnerability from cvelistv5

Published

2026-04-15 04:11

Modified

2026-04-15 16:13

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE

CWE-427 - Uncontrolled Search Path Element

Summary

It has been identified that a vulnerability (CWE-427) exists in the UPS (Uninterruptible Power Supply) management application, whereby improper permissions on the installation directory allow a malicious actor to place a DLL that is then executed with administrator privileges. If a malicious DLL is placed in the installation directory of this product, there is a possibility that the malicious DLL may be executed by exploiting the product’s behavior of loading missing DLLs from the same directory as the executable during service startup.

References

URL

Tags

	https://www.omron.com/jp/ja/inquiry/data/OMSR-2026-001_ja.pdf
	https://www.omron.com/global/en/inquiry/data/OMSR-2026-001_en.pdf

Impacted products

	Vendor	Product	Version
	OMRON SOCIAL SOLUTIONS CO., Ltd.	PowerAttendant Standard Edition	Version: 2.1.2 or lower <

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-5397",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-15T13:46:38.260570Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-15T16:13:26.313Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "platforms": [
            "Windows"
          ],
          "product": "PowerAttendant Standard Edition",
          "vendor": "OMRON SOCIAL SOLUTIONS CO., Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "2.1.2 or lower",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2026-04-15T04:08:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cdiv\u003eIt has been identified that a vulnerability (CWE-427) exists in the UPS (Uninterruptible Power Supply) management application, whereby improper permissions on the installation directory allow a malicious actor to place a DLL that\u0026nbsp;is then executed with administrator privileges.\u003c/div\u003eIf a malicious DLL is placed in the installation directory of this product, there is a possibility that the malicious DLL\u0026nbsp;may be executed by exploiting the product\u2019s behavior of loading missing DLLs from the same directory as the executable during service startup."
            }
          ],
          "value": "It has been identified that a vulnerability (CWE-427) exists in the UPS (Uninterruptible Power Supply) management application, whereby improper permissions on the installation directory allow a malicious actor to place a DLL that\u00a0is then executed with administrator privileges.\n\nIf a malicious DLL is placed in the installation directory of this product, there is a possibility that the malicious DLL\u00a0may be executed by exploiting the product\u2019s behavior of loading missing DLLs from the same directory as the executable during service startup."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-471",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-471 Search Order Hijacking"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-427",
              "description": "CWE-427 Uncontrolled Search Path Element",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-15T04:11:29.716Z",
        "orgId": "bba440f9-ef23-4224-aa62-7ac0935d18d1",
        "shortName": "OMRON"
      },
      "references": [
        {
          "url": "https://www.omron.com/jp/ja/inquiry/data/OMSR-2026-001_ja.pdf"
        },
        {
          "url": "https://www.omron.com/global/en/inquiry/data/OMSR-2026-001_en.pdf"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Vulnerability Related to an Uncontrolled Search Path Element in a UPS Management Application",
      "x_generator": {
        "engine": "Vulnogram 1.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "bba440f9-ef23-4224-aa62-7ac0935d18d1",
    "assignerShortName": "OMRON",
    "cveId": "CVE-2026-5397",
    "datePublished": "2026-04-15T04:11:29.716Z",
    "dateReserved": "2026-04-02T00:17:38.524Z",
    "dateUpdated": "2026-04-15T16:13:26.313Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

jvndb-2026-011472

Vulnerability from jvndb

CVE-2026-5397 (GCVE-0-2026-5397)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature