A vulnerability classified as critical has been found in NEC ExpressUpdate Agent on Windows. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in exposed ioctl with insufficient access control. This vulnerability is identified as CVE-2026-8797 . The attack is only possible with local access. There is not any exploit available.