{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33253", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-03-18T08:17:06.156Z", "datePublished": "2026-03-25T05:11:53.688Z", "dateUpdated": "2026-03-25T13:28:29.422Z"}, "containers": {"cna": {"affected": [{"vendor": "SANYO DENKI CO., LTD.", "product": "SANUPS SOFTWARE STANDALONE", "versions": [{"version": "Ver.1.0.1 to Ver.1.1.4", "status": "affected"}]}, {"vendor": "SANYO DENKI CO., LTD.", "product": "SANUPS SOFTWARE", "versions": [{"version": "Ver.2.0.0 to Ver.2.0.2", "status": "affected"}, {"version": "Ver.1.0.0 to Ver.1.1.4", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege."}], "problemTypes": [{"descriptions": [{"description": "Unquoted search path or element", "lang": "en-US", "cweId": "CWE-428", "type": "CWE"}]}], "references": [{"url": "https://products.sanyodenki.com/media/document/sanups/H0033449_en.pdf"}, {"url": "https://products.sanyodenki.com/media/document/sanups/H0033413_jp.pdf"}, {"url": "https://jvn.jp/en/jp/JVN90835713/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "MEDIUM", "baseScore": 6.7, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.4, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-03-25T05:11:53.688Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-25T13:28:18.919558Z", "id": "CVE-2026-33253", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:28:29.422Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33253", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-03-18T08:17:06.156Z", "datePublished": "2026-03-25T05:11:53.688Z", "dateUpdated": "2026-03-25T13:28:29.422Z"}, "containers": {"cna": {"affected": [{"vendor": "SANYO DENKI CO., LTD.", "product": "SANUPS SOFTWARE STANDALONE", "versions": [{"version": "Ver.1.0.1 to Ver.1.1.4", "status": "affected"}]}, {"vendor": "SANYO DENKI CO., LTD.", "product": "SANUPS SOFTWARE", "versions": [{"version": "Ver.2.0.0 to Ver.2.0.2", "status": "affected"}, {"version": "Ver.1.0.0 to Ver.1.1.4", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege."}], "problemTypes": [{"descriptions": [{"description": "Unquoted search path or element", "lang": "en-US", "cweId": "CWE-428", "type": "CWE"}]}], "references": [{"url": "https://products.sanyodenki.com/media/document/sanups/H0033449_en.pdf"}, {"url": "https://products.sanyodenki.com/media/document/sanups/H0033413_jp.pdf"}, {"url": "https://jvn.jp/en/jp/JVN90835713/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "MEDIUM", "baseScore": 6.7, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.4, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-03-25T05:11:53.688Z"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33253", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-25T13:28:18.919558Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:28:24.408Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege."}], "id": "CVE-2026-33253", "lastModified": "2026-03-25T15:41:33.977", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 0.8, "impactScore": 5.9, "source": "vultures@jpcert.or.jp", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2026-03-25T06:16:28.527", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/jp/JVN90835713/"}, {"source": "vultures@jpcert.or.jp", "url": "https://products.sanyodenki.com/media/document/sanups/H0033413_jp.pdf"}, {"source": "vultures@jpcert.or.jp", "url": "https://products.sanyodenki.com/media/document/sanups/H0033449_en.pdf"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-428"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[2.0.0,2.0.2]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.0.0,1.1.4]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "SANUPS SOFTWARE", "source": "cna", "vendor": "SANYO DENKI CO., LTD."}, "product": "sanups_software", "vendor": "sanyo_denki"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.0.1,1.1.4]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "SANUPS SOFTWARE STANDALONE", "source": "cna", "vendor": "SANYO DENKI CO., LTD."}, "product": "sanups_software_standalone", "vendor": "sanyo_denki"}], "analysis": {"en": {"generated_at": "2026-03-25T06:20:28.679402+00:00", "value": {"mitigation_remediation": ["Check the vendor\u2019s website for patch releases or an upgraded SANUPS version that corrects the unquoted path issue and apply it urgently.", "If no patch is available, limit write permissions on the system drive root folder to trusted administrators only to prevent arbitrary code execution.", "Monitor the system drive for unexpected service registrations and alert on changes to the service configuration files.", "Disable or remove unused local services that might be registered using unquoted paths."], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation to SYSTEM"}, "threat_synthesis": {"affected_systems": "Susceptible products are SANYO DENKI CO., LTD.'s SANUPS SOFTWARE and SANUPS SOFTWARE STANDALONE. No specific version details are supplied; the issue exists across all releases listed in the references.", "description_and_impact": "Service registration uses unquoted file paths, enabling execution of arbitrary code with SYSTEM privileges when the user has write access on the system drive root. This flaw allows a local attacker to execute programs with unwarranted elevated privileges, potentially leading to full system compromise.", "risk_and_exploitability": "The CVSS score of 8.4 indicates a high severity vulnerability. While EPSS data is unavailable and the vulnerability is not listed in KEV, the requirement for write permission on the system drive root suggests a local attack vector. An attacker with such local access can immediately gain SYSTEM level code execution, making this flaw a serious threat if left unaddressed."}}}}, "created": "2026-03-25T11:35:41.175682+00:00", "title": "Unquoted Service Path Allows SYSTEM Privilege Escalation in SANYO DENKI SANUPS Software", "updated": "2026-03-25T21:15:57.519630+00:00", "vendors": ["sanyo_denki", "sanyo_denki$PRODUCT$sanups_software", "sanyo_denki$PRODUCT$sanups_software_standalone"]}