CVE-2026-39454

HIGH CVSS 7.8 View on NVD ↗

Description

SKYSEA Client View and SKYMEC IT Manager provided by Sky Co.,LTD. configure the installation folder with improper file access permission settings. A non-administrative user may manipulate and/or place arbitrary files within the installation folder of the product. As a result, arbitrary code may be executed with the administrative privilege.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://jvn.jp/en/jp/JVN63376363/
https://www.skyseaclientview.net/news/260420_01/

Published: Apr 20, 2026 09:16 UTC Modified: Apr 20, 2026 19:05 UTC