CVE-2026-30896 — HIGH (7.8)

Q: How severe is CVE-2026-30896?

CVE-2026-30896 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-30896?

Check the references section above for vendor advisories and patch information. Affected products include: Q-See Qsee Client.

Vulnerability Description

The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries (DLLs). When a user is directed to place some malicious DLL to the same directory and execute the affected installer, then arbitrary code may be executed with the administrative privilege.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Q-See	Qsee Client	<= 1.0.1

Related Weaknesses (CWE)

CWE-427

References

https://jvn.jp/en/jp/JVN11676807/Third Party Advisory
https://www.q-see.com/pages/downloadProduct

FAQ

What is CVE-2026-30896?

CVE-2026-30896 is a vulnerability with a CVSS score of 7.8 (HIGH). The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries (DLLs). When a user is directed to place some malicious DLL to the same directory and execute the affected...

How severe is CVE-2026-30896?

CVE-2026-30896 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-30896?

Check the references section above for vendor advisories and patch information. Affected products include: Q-See Qsee Client.