Resource Transfer Flaw in RevoWorks SCVX and Browser by RevoWorks
CVE-2025-26698

2.7LOW

Key Information:

Vendor: J’s Communication Co., Ltd.
Status: Revoworks Scvx; Revoworks Browser
Vendor: CVE Published:; 26 February 2025

🔔 Create J’s Communication Co., Ltd. Vulnerability Alert

What is CVE-2025-26698?

A resource transfer issue affects RevoWorks SCVX and RevoWorks Browser, where improper handling may allow the downloading of malicious files to the user's system. This vulnerability underscores the need for users to remain vigilant and apply updates promptly to mitigate potential exploitation risks.

Affected Version(s)

RevoWorks Browser 2.2.100 and earlier 2 series versions

RevoWorks Browser 3.0.1 and earlier 3 series versions

RevoWorks SCVX 4.0.234 and earlier 4 series versions

References

https://jscom.jp/news-20250217/

https://jvn.jp/en/jp/JVN91300609/

CVSS V3.0

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 26, 2025
Vulnerability Reserved
Feb 14, 2025

CVE-2025-26698 Data

JSON