{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25191", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-02-12T07:13:34.985Z", "datePublished": "2026-02-26T05:39:24.457Z", "dateUpdated": "2026-02-26T14:24:33.596Z"}, "containers": {"cna": {"affected": [{"vendor": "Digital Arts Inc.", "product": "FinalCode Ver.5 series", "versions": [{"version": "prior to 5.43R01", "status": "affected"}]}, {"vendor": "Digital Arts Inc.", "product": "FinalCode Ver.6 series", "versions": [{"version": "prior to 6.51R01", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious DLL file and the installer to the same directory and execute the installer, arbitrary code may be executed with the installer's execution privilege."}], "problemTypes": [{"descriptions": [{"description": "Uncontrolled Search Path Element", "lang": "en-US", "cweId": "CWE-427", "type": "CWE"}]}], "references": [{"url": "https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260226_01.pdf"}, {"url": "https://jvn.jp/en/jp/JVN48498976/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.4, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-02-26T05:39:24.457Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-26T14:24:21.775649Z", "id": "CVE-2026-25191", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:24:33.596Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25191", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-26T14:24:21.775649Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:24:27.690Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"version": "4.0", "baseScore": 8.4, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Digital Arts Inc.", "product": "FinalCode Ver.5 series", "versions": [{"status": "affected", "version": "prior to 5.43R01"}]}, {"vendor": "Digital Arts Inc.", "product": "FinalCode Ver.6 series", "versions": [{"status": "affected", "version": "prior to 6.51R01"}]}], "references": [{"url": "https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260226_01.pdf"}, {"url": "https://jvn.jp/en/jp/JVN48498976/"}], "descriptions": [{"lang": "en", "value": "The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious DLL file and the installer to the same directory and execute the installer, arbitrary code may be executed with the installer's execution privilege."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-427", "description": "Uncontrolled Search Path Element"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-02-26T05:39:24.457Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25191", "state": "PUBLISHED", "dateUpdated": "2026-02-26T14:24:33.596Z", "dateReserved": "2026-02-12T07:13:34.985Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2026-02-26T05:39:24.457Z", "assignerShortName": "jpcert"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious DLL file and the installer to the same directory and execute the installer, arbitrary code may be executed with the installer's execution privilege."}, {"lang": "es", "value": "El instalador de FinalCode Cliente proporcionado por Digital Arts Inc. contiene un problema con la ruta de b\u00fasqueda de DLL. Si se dirige a un usuario a colocar un archivo DLL malicioso y el instalador en el mismo directorio y ejecuta el instalador, se podr\u00eda ejecutar c\u00f3digo arbitrario con el privilegio de ejecuci\u00f3n del instalador."}], "id": "CVE-2026-25191", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "vultures@jpcert.or.jp", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2026-02-26T06:17:16.200", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/jp/JVN48498976/"}, {"source": "vultures@jpcert.or.jp", "url": "https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260226_01.pdf"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-427"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,5.43R01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "FinalCode Ver.5 series", "source": "cna", "vendor": "Digital Arts Inc."}, "product": "finalcode_ver.5_series", "vendor": "digital_arts"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,6.51R01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "FinalCode Ver.6 series", "source": "cna", "vendor": "Digital Arts Inc."}, "product": "finalcode_ver.6_series", "vendor": "digital_arts"}], "analysis": {"en": {"generated_at": "2026-04-18T10:24:49.467556+00:00", "value": {"mitigation_remediation": ["Obtain the latest FinalCode installer from Digital Arts Inc. that resolves the DLL search path flaw", "Run the updated installer from a trusted directory that contains no user\u2011supplied DLLs", "Verify that the installation completes without any prompts to load external DLLs"], "summary": {"action": "Apply Patch", "impact": "Arbitrary Code Execution"}, "threat_synthesis": {"affected_systems": "Both the FinalCode Ver.5 and Ver.6 series produced by Digital Arts Inc. are affected. Users running these installers on any Windows platform where the installer is executed from a directory containing a malicious DLL are at risk.", "description_and_impact": "The FinalCode Client installer from Digital Arts Inc. is vulnerable because it uses a DLL search path that can be manipulated. If an attacker or a privileged user places a malicious DLL file into the same directory as the installer and runs the installer, the malicious code will be loaded and executed with the installer\u2019s privileges. This flaw is a classic example of DLL Search Path Manipulation, identified as CWE\u2011427, allowing attackers to gain executable control over the installation process.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 8.4 and a very low EPSS score of less than 1%, indicating that while the flaw is severe, the likelihood of exploitation is low and it has not been reported in the CISA KEV catalog. The attack vector is inferred to be local \u2013 the attacker must have the ability to place files in the installer\u2019s directory and execute the installer, so it typically requires either a privileged user or compromised credentials. If achieved, the attacker can run arbitrary code with the installer\u2019s execution privilege."}}}}, "created": "2026-02-26T13:09:39.395822+00:00", "title": "FinalCode Client Installer DLL Search Path Manipulation Allows Arbitrary Code Execution", "updated": "2026-04-18T10:30:35.763868+00:00", "vendors": ["digital_arts", "digital_arts$PRODUCT$finalcode_ver.5_series", "digital_arts$PRODUCT$finalcode_ver.6_series"]}