Vulnerability in Nec Corporation Expressupdate Agent For Windows
CVE-2026-8797
An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could be executed with SYSTEM privileges.
EPSS: 0.001 (2.3th percentile) — read the EPSS interpretation.
Affected products
- Nec Corporation Expressupdate Agent For Windows — versions 3.24 and prior