CVE-2026-8797 | HackTesting

An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could be executed with SYSTEM privileges.

Credits

MASAHIRO IIDA of LAC Co., Ltd.

References

https://jpn.nec.com/security-info/secinfo/nv26-004_en.html