Vulnerability Description
Multiple i-フィルター products are configured with improper file access permission settings. Files may be created or overwritten in the system directory or backup directory by a non-administrative user.
CVSS Score
5.5
MEDIUM
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Related Weaknesses (CWE)
References
- https://biz3.optim.co.jp/
- https://jvn.jp/en/jp/JVN17307628/
- https://sd.fjsd001.dfcenter.jp.fujitsu.com/portal/ja/kb/articles/windows%E3%81%A
- https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=informati
- https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=informati
- https://www.mobi-connect.net/file/ifilter/
FAQ
What is CVE-2026-28267?
CVE-2026-28267 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Multiple i-フィルター products are configured with improper file access permission settings. Files may be created or overwritten in the system directory or backup directory by a non-administrative user.
How severe is CVE-2026-28267?
CVE-2026-28267 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-28267?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.