CVE-2026-37452: n/a
Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the MSIAPService.exe component
AI Analysis
Technical Summary
This vulnerability involves insecure permissions in the MSI NBFoundation Service v2.0.2506.1201, specifically affecting the MSIAPService.exe component. The insecure permissions could allow a remote attacker to access sensitive information. No further technical details, exploitation methods, or impact specifics are provided. No remediation or patch information is available at this time.
Potential Impact
A remote attacker may be able to obtain sensitive information due to insecure permissions in the MSIAPService.exe component of MSI NBFoundation Service v2.0.2506.1201. The exact nature and scope of the sensitive information are not detailed. There is no evidence of known exploits in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or temporary mitigation is currently documented.
CVE-2026-37452: n/a
Description
Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the MSIAPService.exe component
Affected software
pkg:github/littlesurii/MSIAPServiceRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves insecure permissions in the MSI NBFoundation Service v2.0.2506.1201, specifically affecting the MSIAPService.exe component. The insecure permissions could allow a remote attacker to access sensitive information. No further technical details, exploitation methods, or impact specifics are provided. No remediation or patch information is available at this time.
Potential Impact
A remote attacker may be able to obtain sensitive information due to insecure permissions in the MSIAPService.exe component of MSI NBFoundation Service v2.0.2506.1201. The exact nature and scope of the sensitive information are not detailed. There is no evidence of known exploits in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or temporary mitigation is currently documented.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-04-06T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a3d97134853345fc1747211
Added to database: 06/25/2026, 21:01:07 UTC
Last enriched: 06/25/2026, 21:16:09 UTC
Last updated: 06/26/2026, 01:46:49 UTC
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.