CVE-2025-47149 | THREATINT

Description

The optional feature 'Anti-Virus & Sandbox' of i-FILTER contains an issue with improper pattern file validation. If exploited, the product may treat an unauthorized pattern file as an authorized. If the product uses a specially crafted pattern file, information in the server where the product is running may be retrieved, and/or cause a denial of service (DoS) condition.

PUBLISHED Reserved 2025-05-20 | Published 2025-05-23 | Updated 2025-05-23 | Assigner jpcert

MEDIUM: 5.3CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Problem types

Use of less trusted source

Product status

Ver.10.50R01 to Ver.10.67R02

affected

References

download.daj.co.jp/...releasenote_content&division=6&id=1057

jvn.jp/en/jp/JVN68079883/

cve.org (CVE-2025-47149)

nvd.nist.gov (CVE-2025-47149)

Download JSON