Primary

Context

RATOC RAID Monitoring Manager for Windows Uncontrolled Search Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A vulnerability exists in the installer of RATOC RAID Monitoring Manager for Windows, prior to version 2.00.009.260220. The issue arises from an uncontrolled search path element, allowing the installer to load certain DLLs from the current directory. If a user is instructed to place a crafted DLL in the same directory as the installer, it could lead to arbitrary code execution with administrator privileges.

Impact

Exploitation of this vulnerability allows for arbitrary code execution with administrator privileges.

Remediation

Users should update RATOC RAID Monitoring Manager for Windows to the latest version. Instructions for downloading the latest version are available on the RATOC Systems website.

Added: Mar 26, 2026, 7:24 AM

Updated: Mar 26, 2026, 7:24 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RATOC RAID Monitoring Manager for Windows Uncontrolled Search Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating