CVE-2026-5397

Name of the Vulnerable Software and Affected Versions UPS management application (affected versions not specified)

Description Improper permissions on the installation directory allow a malicious actor to place a DLL that is executed with administrator privileges. This occurs because the application loads missing DLLs from the same directory as the executable during service startup.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.