Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-28267
PUBLISHED
More InfoOfficial Page
Assigner-jpcert
Assigner Org ID-ede6fdc4-6654-4307-a26d-3331c018e2ce
View Known Exploited Vulnerability (KEV) details
Published At-09 Mar, 2026 | 22:28
Updated At-10 Mar, 2026 | 14:16
Rejected At-
▼CVE Numbering Authority (CNA)

Multiple i-フィルター products are configured with improper file access permission settings. Files may be created or overwritten in the system directory or backup directory by a non-administrative user.

Affected Products
Vendor
Digital Arts Inc.
Product
i-フィルター 10 (Windows version only)
Versions
Affected
  • prior to Ver.10.02.00
Vendor
Digital Arts Inc.
Product
i-フィルター 6.0
Versions
Affected
  • prior to Ver.6.00.57
Vendor
Digital Arts Inc.
Product
i-フィルター for ネットカフェ
Versions
Affected
  • prior to Ver.6.10.57
Vendor
Digital Arts Inc.
Product
i-フィルター for マルチデバイス (Windows version only)
Versions
Affected
  • prior to Ver.6.00.57
Vendor
Digital Arts Inc.
Product
i-フィルター for ZAQ (Windows version only)
Versions
Affected
  • prior to Ver.6.00.57
Vendor
Digital Arts Inc.
Product
i-フィルター for プロバイダー
Versions
Affected
  • prior to Ver.2.00.30
Vendor
Digital Arts Inc.
Product
i-FILTER ブラウザー&クラウド MultiAgent for Windows
Versions
Affected
  • prior to Ver.4.93R13
Vendor
Digital Arts Inc.
Product
DigitalArts@Cloud Agent (for Windows)
Versions
Affected
  • prior to Ver.1.70R01
Vendor
OPTiM Corporation
Product
Optimal Biz Web Filtering Powered by i-FILTER (Windows version)
Versions
Affected
  • prior to 4.93R13
Vendor
Inventit Inc.
Product
MobiConnect i-FILTER Browser Option MultiAgent for Windows
Versions
Affected
  • prior to Ver.4.93R13
Vendor
Fujitsu LimitedFujitsu Limited
Product
i-FILTER Browser & Cloud MultiAgent for Windows
Versions
Affected
  • prior to Ver.4.93R13
Problem Types
TypeCWE IDDescription
CWECWE-276Incorrect default permissions
Type: CWE
CWE ID: CWE-276
Description: Incorrect default permissions
Metrics
VersionBase scoreBase severityVector
3.05.5MEDIUM
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
4.06.8MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Version: 3.0
Base score: 5.5
Base severity: MEDIUM
Vector:
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Version: 4.0
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_01.pdf
N/A
https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_02.pdf
N/A
https://biz3.optim.co.jp/
N/A
https://www.mobi-connect.net/file/ifilter/
N/A
https://sd.fjsd001.dfcenter.jp.fujitsu.com/portal/ja/kb/articles/windows%E3%81%AE%E3%83%AA%E3%83%AA%E3%83%BC%E3%82%B9%E3%83%8E%E3%83%BC%E3%83%88
N/A
https://jvn.jp/en/jp/JVN17307628/
N/A
Hyperlink: https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_01.pdf
Resource: N/A
Hyperlink: https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260309_02.pdf
Resource: N/A
Hyperlink: https://biz3.optim.co.jp/
Resource: N/A
Hyperlink: https://www.mobi-connect.net/file/ifilter/
Resource: N/A
Hyperlink: https://sd.fjsd001.dfcenter.jp.fujitsu.com/portal/ja/kb/articles/windows%E3%81%AE%E3%83%AA%E3%83%AA%E3%83%BC%E3%82%B9%E3%83%8E%E3%83%BC%E3%83%88
Resource: N/A
Hyperlink: https://jvn.jp/en/jp/JVN17307628/
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found