CVE-2026-27653

Summary

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges.

Affected Software

VendorProductVersion RangeStatus
Soliton Systems K.K.Soliton SecureBrowser for OneGateV1.0.0affected
Soliton Systems K.K.Soliton SecureBrowser IIV2.0.0 to V2.0.14affected
Soliton Systems K.K.Soliton SecureWorkspace (formerly WrappingBox)V1.0.0 to V1.4.7affected

Weaknesses

  • CWE-276: Incorrect default permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References