CVE-2026-28267
CVE-2026-28267
Multiple i-フィルター products are configured with improper file access permission settings. Files may be created or overwritten in the system directory or backup directory by a non-administrative user.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Productos afectados
Digital Arts Inc. · DigitalArts@Cloud Agent (for Windows)Digital Arts Inc. · i-FILTER ブラウザー&クラウド MultiAgent for WindowsDigital Arts Inc. · i-フィルター 10 (Windows version only)Digital Arts Inc. · i-フィルター 6.0Digital Arts Inc. · i-フィルター for ZAQ (Windows version only)Digital Arts Inc. · i-フィルター for ネットカフェDigital Arts Inc. · i-フィルター for プロバイダーDigital Arts Inc. · i-フィルター for マルチデバイス (Windows version only)Fujitsu Limited · i-FILTER Browser & Cloud MultiAgent for WindowsInventit Inc. · MobiConnect i-FILTER Browser Option MultiAgent for WindowsOPTiM Corporation · Optimal Biz Web Filtering Powered by i-FILTER (Windows version)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://biz3.optim.co.jp/https://jvn.jp/en/jp/JVN17307628/https://sd.fjsd001.dfcenter.jp.fujitsu.com/portal/ja/kb/articles/windows%E3%81%AE%E3%83%AA%E3%83%AA%E3%83%BC%E3%82%B9%E3%83%8E%E3%83%BC%E3%83%88https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_01.pdfhttps://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_02.pdfhttps://www.mobi-connect.net/file/ifilter/