High severity8.1NVD Advisory· Published Apr 28, 2025· Updated Apr 15, 2026

CVE-2025-26692

Description

Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a restricted directory ('Path Traversal'). If exploited, arbitrary code may be executed by a remote unauthenticated attacker with the Windows system privilege where the product is running.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN82536398/nvd
mfp-support.sios.jp/hc/ja/articles/45853460006937nvd
siosapps.sios.jp/agent_info/20250425001.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.526
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000