CVE-2026-56437
Severity CVSS v4.0:
HIGH
Type:
CWE-427
Uncontrolled Search Path Element
Publication date:
08/07/2026
Last modified:
08/07/2026
Description
Uncontrolled search path element issue exists in Pupsman versions prior to 3.9.0. If a crafted DLL file is placed in the same folder as the affected installer and the installer is executed, arbitrary code may be executed with SYSTEM privilege.
Impact
Base Score 4.0
8.40
Severity 4.0
HIGH
Base Score 3.x
7.80
Severity 3.x
HIGH



