Description
The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder. If the installation folder is customized to some non-default one, the folder may be left with un-secure ACLs and non-administrative users can alter contents of that folder. It may allow a non-administrative user to execute an arbitrary code with SYSTEM privilege.
Published: 2026-03-26
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Immediate Patch
AI Analysis

Impact

The installer of RATOC RAID Monitoring Manager for Windows permits users to select a custom installation directory. When a non‑default folder is chosen, the installer can leave the folder's access‑control lists insecure, allowing non‑administrative users to modify its contents. By replacing or editing these files, an attacker can execute arbitrary code that runs with SYSTEM privileges, granting full control over the system.

Affected Systems

The vulnerability affects RATOC RAID Monitoring Manager for Windows from RATOC Systems, Inc. The CVE advisory does not specify affected versions, so any installation that permits custom folder selection could be impacted.

Risk and Exploitability

The CVSS score of 8.5 indicates a high severity vulnerability. EPSS data is not available and the flaw is not listed in CISA's KEV catalog. The likely attack vector is local: a non‑administrative user who can install or modify the application. Exploitation requires manipulating the insecure ACLs of the installation directory; once the attacker gains write access to the directory, they can replace executable files or inject malicious code, thereby executing it with SYSTEM privilege and compromising confidentiality, integrity, and availability.

Generated by OpenCVE AI on March 26, 2026 at 08:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor‑supplied patch or upgrade to a version that enforces proper ACLs on the installation folder.
  • Verify that the installation directory’s ACLs restrict modify permissions to administrators only.

Generated by OpenCVE AI on March 26, 2026 at 08:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 26 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Title Privilege Escalation via Unsecured Installation Folder in RATOC RAID Monitoring Manager for Windows

Thu, 26 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Ratocsystems
Ratocsystems raid Monitoring Manager
Vendors & Products Ratocsystems
Ratocsystems raid Monitoring Manager

Thu, 26 Mar 2026 07:15:00 +0000

Type Values Removed Values Added
Description The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder. If the installation folder is customized to some non-default one, the folder may be left with un-secure ACLs and non-administrative users can alter contents of that folder. It may allow a non-administrative user to execute an arbitrary code with SYSTEM privilege.
Weaknesses CWE-276
References
Metrics cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Ratocsystems Raid Monitoring Manager
cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published:

Updated: 2026-03-26T14:13:14.348Z

Reserved: 2026-03-19T02:37:43.433Z

Link: CVE-2026-32680

cve-icon Vulnrichment

Updated: 2026-03-26T14:13:02.795Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-26T07:16:20.220

Modified: 2026-03-26T15:13:15.790

Link: CVE-2026-32680

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-26T12:08:18Z

Weaknesses