CNNVD-202506-1649 Information

Jun 12, 2025 cve

CNNVD ID

CNNVD-202506-1649

CVE-2025-35978

CNNVD Published: 2025-06-12

Description (Chinese)

Fujitsu UpdateNavi和UpdateNaviInstallService都是日本富士通（Fujitsu）公司的产品。Fujitsu UpdateNavi是一个应用更新软件。UpdateNaviInstallService是一款应用更新软件。 Fujitsu UpdateNavi V1.4 L10至L33和UpdateNaviInstallService 1.2.0091至1.2.0125版本存在安全漏洞，该漏洞源于通信通道限制不当，可能导致修改注册表值或执行任意代码。

Description (English)

Fujitsu Updatenavi and UpdateNaviInstallService are products of Fujitsu Japan. Fujitsu Updatenavi is an application update software. UpdateNaviInstallService is an application update. Fujitsu UpdateNavi V1.4 L10 to L33 and UpdateNaviInstall Service 1.2.0091 to 1.2.0125 have security loopholes, which stem from inappropriate communication channel restrictions, which may lead to changes in registration log values or the implementation of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

富士通

Published

2025-06-12

Last Modified

2026-02-24

References

https://azby.fmworld.net/support/security/information/updatenavi202506/ https://jvn.jp/en/jp/JVN17860456/ https://nvd.nist.gov/vuln/detail/CVE-2025-35978

Patch

https://azby.fmworld.net/support/security/information/updatenavi202506/

Share on: