Incorrect Default Permissions in UPS MUMC 01.06.0001 (A03) SYSTEM Exec via DLL
CVE-2026-26034 Published on March 5, 2026

UPS Multi-UPS Management Console (MUMC) version 01.06.0001 (A03) contains an Incorrect Default Permissions (CWE-276) vulnerability that allows an attacker to execute arbitrary code with SYSTEM privileges by causing the application to load a specially crafted DLL.

NVD

Weakness Type

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

Affected Versions

Dell Inc. UPS Multi-UPS Management Console (MUMC) Version 01.06.0001 (A03) is affected by CVE-2026-26034

Exploit Probability

EPSS

0.02%

Percentile

3.72%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Incorrect Default Permissions in UPS MUMC 01.06.0001 (A03) SYSTEM Exec via DLLCVE-2026-26034 Published on March 5, 2026

Weakness Type

Incorrect Default Permissions

Affected Versions

Exploit Probability

Incorrect Default Permissions in UPS MUMC 01.06.0001 (A03) SYSTEM Exec via DLL
CVE-2026-26034 Published on March 5, 2026