JVN#67883085
Multiple vulnerabilities in ServerView Agents for Windows
Overview
ServerView Agents for Windows provided by Fsas Technologies Inc. contains multiple vulnerabilities.
Products Affected
- ServerView Agents for Windows V11.60.04 and earlier
Description
ServerView Agents for Windows provided by Fsas Technologies Inc. is server management software.
ServerView Agents for Windows contains multiple vulnerabilities listed below.
- Incorrect permission assignment for critical resource (CWE-732)
- CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score 8.5
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score 7.8
- CVE-2026-27788
- Privilege chaining (CWE-268)
- CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score 8.5
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score 7.8
- CVE-2026-32325
Impact
An attacker who can log in to the server where the affected product is installed may obtain SYSTEM privilege.
Solution
Update the Software
Update the software to the latest version according to the information provided by the developer.
Apply the Workaround
The developer recommends that the users should follow the workaround until applying the latest update.
For more details, refer to the information provided by the developer.
Vendor Status
| Vendor | Status | Last Update | Vendor Notes |
|---|---|---|---|
| Fsas Technologies Inc. | Vulnerable | 2026/06/01 | Fsas Technologies Inc. website |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Credit
MASAHIRO IIDA of LAC Co., Ltd. reported these vulnerabilities to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert |
|
| JPCERT Reports |
|
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2026-27788 |
|
CVE-2026-32325 |
|
| JVN iPedia |
JVNDB-2026-000077 |