CVE-2026-21408
DLL Search Path Vulnerability in beat-access Allows SYSTEM Code Execution
Publication date: 2026-01-27
Last updated on: 2026-01-27
Assigner: JPCERT/CC
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fujifilm_business_innovation_corp | beat-access | to 3.0.3 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-427 | The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in beat-access for Windows (version 3.0.3 and earlier) involves an uncontrolled search path element (CWE-427) that causes the software to insecurely load Dynamic Link Libraries (DLLs). This flaw can allow an attacker to execute arbitrary code with SYSTEM privileges if the software is installed outside the default installation folder. [1, 2]
How can this vulnerability impact me? :
The vulnerability can lead to arbitrary code execution with SYSTEM privileges, which means an attacker could gain high-level control over the affected system. This represents a significant risk of privilege escalation, potentially compromising confidentiality, integrity, and availability of the system. However, exploitation requires local access and some user interaction, and no exploitation has been reported so far. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
You can detect this vulnerability by verifying the installed version of beat-access for Windows. Launch the beat-access application, then select "γγ«γοΌHοΌ" (Help) and "γγΌγΈγ§γ³ζ ε ±οΌAοΌ" (About) to check the version number displayed beneath the software name. If the version is 3.0.3 or earlier, the system is vulnerable. There are no specific network or system commands provided for detection in the resources. [1]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately update beat-access for Windows to version 4.0.0 or later. Additionally, ensure that the software is installed in the default installation folder, as no impact occurs if installed there. The latest version can be downloaded internally via the beat-box LAN or externally through the Remote Access Support Page provided by FUJIFILM Business Innovation Corp. [1, 2]