{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24694", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-01-27T04:24:11.368Z", "datePublished": "2026-02-03T05:27:56.739Z", "dateUpdated": "2026-02-03T16:01:27.410Z"}, "containers": {"cna": {"affected": [{"vendor": "Roland Corporation", "product": "Roland Cloud Manager", "versions": [{"version": "ver.3.1.19 and prior", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "The installer for Roland Cloud Manager ver.3.1.19 and prior insecurely loads Dynamic Link Libraries (DLLs), which could allow an attacker to execute arbitrary code with the privileges of the application."}], "problemTypes": [{"descriptions": [{"description": "Uncontrolled Search Path Element", "lang": "en-US", "cweId": "CWE-427", "type": "CWE"}]}], "references": [{"url": "https://www.roland.com/global/products/rc_roland_cloud_manager/support/#dl-support_documents"}, {"url": "https://jvn.jp/en/jp/JVN89992160/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.4, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-02-03T05:27:56.739Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-03T16:00:02.719792Z", "id": "CVE-2026-24694", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-03T16:01:27.410Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-24694", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-03T16:00:02.719792Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-03T16:00:43.088Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"version": "4.0", "baseScore": 8.4, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Roland Corporation", "product": "Roland Cloud Manager", "versions": [{"status": "affected", "version": "ver.3.1.19 and prior"}]}], "references": [{"url": "https://www.roland.com/global/products/rc_roland_cloud_manager/support/#dl-support_documents"}, {"url": "https://jvn.jp/en/jp/JVN89992160/"}], "descriptions": [{"lang": "en", "value": "The installer for Roland Cloud Manager ver.3.1.19 and prior insecurely loads Dynamic Link Libraries (DLLs), which could allow an attacker to execute arbitrary code with the privileges of the application."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-427", "description": "Uncontrolled Search Path Element"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-02-03T05:27:56.739Z"}}}, "cveMetadata": {"cveId": "CVE-2026-24694", "state": "PUBLISHED", "dateUpdated": "2026-02-03T16:01:27.410Z", "dateReserved": "2026-01-27T04:24:11.368Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2026-02-03T05:27:56.739Z", "assignerShortName": "jpcert"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The installer for Roland Cloud Manager ver.3.1.19 and prior insecurely loads Dynamic Link Libraries (DLLs), which could allow an attacker to execute arbitrary code with the privileges of the application."}, {"lang": "es", "value": "El instalador de Roland Cloud Manager ver.3.1.19 y versiones anteriores carga de forma insegura Bibliotecas de Enlace Din\u00e1mico (DLL), lo que podr\u00eda permitir a un atacante ejecutar c\u00f3digo arbitrario con los privilegios de la aplicaci\u00f3n."}], "id": "CVE-2026-24694", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "vultures@jpcert.or.jp", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2026-02-03T06:15:53.547", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/jp/JVN89992160/"}, {"source": "vultures@jpcert.or.jp", "url": "https://www.roland.com/global/products/rc_roland_cloud_manager/support/#dl-support_documents"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-427"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T00:25:29.175502+00:00", "value": {"mitigation_remediation": ["Upgrade Roland Cloud Manager to the latest version, which contains a fix for the insecure DLL loading.", "Reinstall the application after verifying that no untrusted DLLs remain in the installation directories.", "Configure the operating system or application settings to block automatic loading of DLLs from non\u2011trusted locations, ensuring that only signed, verified libraries can be used during installation."], "summary": {"action": "Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Vulnerable systems are those running Roland Cloud Manager for Windows, version 3.1.19 or lower. The product is distributed by Roland Corporation under the Roland Cloud Manager suite. No other products or versions are known to be affected based on the current CNA information.", "description_and_impact": "The installer for Roland Cloud Manager 3.1.19 and earlier contains an insecure DLL loading mechanism. This flaw is a classic example of a path\u2011based DLL injection vulnerability, identified as CWE\u2011427. If an attacker is able to influence which libraries are loaded during installation, they can place a malicious DLL in a location that the installer trusts and thus execute arbitrary code with the same privileges held by the application.", "risk_and_exploitability": "The risk profile is high: CVSS 8.4 indicates a serious impact. EPSS < 1\u00a0% suggests that exploitation, while technically feasible, is expected to be infrequent. The vulnerability is not listed in the CISA KEV catalog, meaning no active exploits have been reported yet. The attack vector is inferred to be local or remote, depending on whether the attacker can run the installer or supply a custom DLL; however, the description does not explicitly state the required conditions. In either case, success would give the attacker the same rights as the application, potentially compromising system integrity or allowing further lateral movement."}}}}, "created": "2026-02-04T12:14:22.024005+00:00", "title": "Installer Loads Untrusted DLLs Leading to Arbitrary Code Execution in Roland Cloud Manager", "updated": "2026-04-18T00:30:25.713774+00:00", "vendors": ["roland_corporation", "roland_corporation$PRODUCT$roland_cloud_manager"]}