CVE-2026-39454

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.8 / 10

Vector String

                                        CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

SKYSEA Client View and SKYMEC IT Manager provided by Sky Co.,LTD. configure the installation folder with improper file access permission settings. A non-administrative user may manipulate and/or place arbitrary files within the installation folder of the product. As a result, arbitrary code may be executed with the administrative privilege.

Vulnerability Details

Published Date

April 20, 2026

Last Modified

April 20, 2026

CWE ID

CWE-276

Source

NVD

Vendor

Sky Co.,LTD.

Product

SKYSEA Client View, SKYMEC IT Manager

External References

https://jvn.jp/en/jp/JVN63376363/
https://www.skyseaclientview.net/news/260420_01/

CVE-2026-39454

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment