Home

Description

Multiple i-フィルター products contain an issue with incorrect default permissions. If this vulnerability is exploited, a local authenticated attacker may replace a service executable on the system where the product is running, potentially allowing arbitrary code execution with SYSTEM privileges.

PUBLISHED Reserved 2025-08-21 | Published 2025-08-27 | Updated 2025-08-27 | Assigner jpcert




HIGH: 7.8CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HIGH: 8.5CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Incorrect default permissions

Product status

prior to 6.00.55
affected

prior to 6.00.55 (Windows version only)
affected

prior to 6.00.55 (Windows version only)
affected

prior to 6.10.55
affected

prior to 4.93.R11
affected

prior to 4.93R11
affected

prior to 4.93R11
affected

References

www.daj.jp/...p?page=dl&filename=information_20250827_01.pdf

www.daj.jp/...p?page=dl&filename=information_20250827_02.pdf

jvn.jp/en/jp/JVN55678602/

cve.org (CVE-2025-57846)

nvd.nist.gov (CVE-2025-57846)

Download JSON