DLL Search Path Vulnerability in FinalCode Client by Digital Arts Inc.
CVE-2026-25191

8.4HIGH

Key Information:

Vendor

Digital Arts Inc.

Status
Finalcode Ver.5 Series
Finalcode Ver.6 Series
Vendor
CVE Published:
26 February 2026

What is CVE-2026-25191?

The FinalCode Client installer from Digital Arts Inc. is susceptible to a DLL search path vulnerability. This issue arises when a user places a malicious DLL file in the same directory as the installer. If the installer is executed in this context, it may run arbitrary code with the privileges of the installer, potentially allowing an attacker to compromise the system. Users should ensure they download the installer from trusted sources and be cautious of where they execute such files to mitigate the risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FinalCode Ver.5 series prior to 5.43R01

FinalCode Ver.6 series prior to 6.51R01

References

https://www.daj.jp/shared/php/downloadset/c/parts.php?pag...
https://jvn.jp/en/jp/JVN48498976/

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

CVSS V3.0

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.