CVE-2026-25191

HIGH 7.8

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious DLL file and the installer to the same directory and execute the installer, arbitrary code may be executed with the installer's execution privilege.

Vendor	digital arts inc.
Product	finalcode ver.5 series
Published	Feb 26, 2026
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for digital arts inc. finalcode ver.5 series

Be the first to know when new high vulnerabilities affecting digital arts inc. finalcode ver.5 series are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Versions

Digital Arts Inc. / FinalCode Ver.5 series

prior to 5.43R01

Digital Arts Inc. / FinalCode Ver.6 series

prior to 6.51R01

References

NVD ↗ CVE.org ↗ EPSS Data ↗

daj.jp: https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260226_01.pdf jvn.jp: https://jvn.jp/en/jp/JVN48498976/