← back
CVE-2025-26698

CVE-2025-26698

CVSS 2.7 LOWEPSS 0.2%CWE-669
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2.7EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
26 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Incorrect resource transfer between spheres issue exists in RevoWorks SCVX and RevoWorks Browser. If exploited, malicious files may be downloaded to the system where using the product.
CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N
Affected products
J’s Communication Co., Ltd. · RevoWorks BrowserJ’s Communication Co., Ltd. · RevoWorks SCVX

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jscom.jp/news-20250217/https://jvn.jp/en/jp/JVN91300609/