CVE-2026-28267 | THREATINT

Description

Multiple i-フィルター products are configured with improper file access permission settings. Files may be created or overwritten in the system directory or backup directory by a non-administrative user.

PUBLISHED Reserved 2026-02-26 | Published 2026-03-09 | Updated 2026-03-10 | Assigner jpcert

MEDIUM: 5.5CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

MEDIUM: 6.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

Incorrect default permissions

Product status

prior to Ver.10.02.00

affected

prior to Ver.6.00.57

affected

prior to Ver.6.10.57

affected

prior to Ver.6.00.57

affected

prior to Ver.6.00.57

affected

prior to Ver.2.00.30

affected

prior to Ver.4.93R13

affected

prior to Ver.1.70R01

affected

prior to 4.93R13

affected

prior to Ver.4.93R13

affected

prior to Ver.4.93R13

affected

References

www.daj.jp/...p?page=dl&filename=information_20260309_01.pdf

www.daj.jp/...p?page=dl&filename=information_20260309_02.pdf

biz3.optim.co.jp/

www.mobi-connect.net/file/ifilter/

sd.fjsd001.dfcenter.jp.fujitsu.com/...�リリースノート

jvn.jp/en/jp/JVN17307628/

cve.org (CVE-2026-28267)

nvd.nist.gov (CVE-2026-28267)

Download JSON