Unrated severityNVD Advisory· Published Mar 25, 2026· Updated Mar 25, 2026

CVE-2026-33253

Description

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.

Affected products

SANYO DENKI CO., LTD./SANUPS SOFTWAREllm-create
SANYO DENKI CO., LTD./SANUPS SOFTWAREv5
Range: Ver.2.0.0 to Ver.2.0.2
SANYO DENKI CO., LTD./SANUPS SOFTWARE STANDALONEv5
Range: Ver.1.0.1 to Ver.1.1.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN90835713/mitre
products.sanyodenki.com/media/document/sanups/H0033413_jp.pdfmitre
products.sanyodenki.com/media/document/sanups/H0033449_en.pdfmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000