Description

It has been identified that a vulnerability (CWE-427) exists in the UPS (Uninterruptible Power Supply) management application, whereby improper permissions on the installation directory allow a malicious actor to place a DLL that is then executed with administrator privileges. If a malicious DLL is placed in the installation directory of this product, there is a possibility that the malicious DLL may be executed by exploiting the product’s behavior of loading missing DLLs from the same directory as the executable during service startup.

INFO

Published Date :

2026-04-15T04:11:29.716Z

Last Modified :

2026-04-15T16:13:26.313Z

Source :

OMRON
AFFECTED PRODUCTS

The following products are affected by CVE-2026-5397 vulnerability.

Vendors Products
Omron
  • Powerattendant Standard Edition
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-5397.

URL Resource
https://www.omron.com/global/en/inquiry/data/OMSR-2026-001_en.pdf cve-icon cve-icon
https://www.omron.com/jp/ja/inquiry/data/OMSR-2026-001_ja.pdf cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact