Vulnerability in Gs Yuasa International Ltd. Fullback Manager Pro For Network (For Windows)
CVE-2025-66461
FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with unquoted file paths. A user may execute arbitrary code with SYSTEM privilege if he/she has the write permission on the path to the directory…
EPSS: 0.001 (3.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.7 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Gs Yuasa International Ltd. Fullback Manager Pro For Network (For Windows) — versions 3.00 and earlier
- Gs Yuasa International Ltd. Fullback Manager Pro (For Windows) — versions 4.00 and earlier
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-66461?
- CVE-2025-66461 is a medium-severity vulnerability in Gs Yuasa International Ltd. Fullback Manager Pro For Network (For Windows), classified under Unquoted Search Path or Element. CVSS score: 6.7/10. Published 2025-12-08.
- How severe is CVE-2025-66461?
- Medium severity. CVSS v3 base score is 6.7 out of 10.