Kotatsu Shiraki

**Name of the Vulnerable Software and Affected Versions** INplc SDK Express versions 3.08 and earlier INplc SDK Pro+ versions 3.08 and earlier **Description** The issue is related to an untrusted search path vulnerability in the Installer of the affected software. This vulnerability allows an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** For INplc SDK Express versions 3.08 and earlier, update to a version later than 3.08 to resolve the issue. For INplc SDK Pro+ versions 3.08 and earlier, update to a version later than 3.08 to resolve the issue. As a temporary workaround, consider restricting access to the Installer to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** INplc-RT versions 3.08 and earlier **Description** The issue allows remote attackers to cause a denial-of-service (DoS) condition that may result in executing arbitrary code via unspecified vectors. **Recommendations** For INplc-RT versions 3.08 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** INplc-RT versions 3.08 and earlier **Description** The issue allows remote attackers to bypass authentication and execute an arbitrary command through protocol-compliant traffic. **Recommendations** For INplc-RT versions 3.08 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** INplc-RT versions 3.08 and earlier **Description** The issue allows remote attackers to bypass authentication and execute an arbitrary command through protocol-compliant traffic. **Recommendations** For INplc-RT versions 3.08 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** INplc-RT versions 3.08 and earlier **Description** A privilege escalation issue allows an attacker with administrator rights to execute arbitrary code on the Windows system via unspecified vectors. **Recommendations** For INplc-RT versions 3.08 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.