Vulnerabilities

CVE-2026-44469

by Fred · 26/05/2026

The affected product extracts installation files to a temporary directory with incorrect default permissions during administrative installation. A low-privileged local attacker can exploit a TOCTOU race condition with a practical time window to replace verified files with malicious ones before installation, resulting in local privilege escalation.

More information : https://www.certvde.com/en/advisories/VDE-2026-055/

Similar

Tags: Cybersecurity Alert