CVE-2026-28267

🗓️ 09 Mar 2026 22:28:24Reported by jpcertType

Multiple i-フィルター products allow non-admins to create or overwrite files in system or backup directories due to improper permissions.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2026-28267	9 Mar 202606:15	–	circl
CNNVD	Digital Arts i-フィルター安全漏洞	10 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-28267	9 Mar 202622:28	–	cvelist
EUVD	EUVD-2026-10404	10 Mar 202618:31	–	euvd
Japan Vulnerability Notes	Improper file access permission settings in multiple Digital Arts products	9 Mar 202605:57	–	jvn
NVD	CVE-2026-28267	10 Mar 202617:38	–	nvd
Positive Technologies	PT-2026-24143	9 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-28267	11 Mar 202607:08	–	redhatcve
Vulnrichment	CVE-2026-28267	9 Mar 202622:28	–	vulnrichment

Vulners

Node

digital_arts_inc.i-_10_(windows_version_only)Range<10.02.00

digital_arts_inc.i-_6.0Range<6.00.57

digital_arts_inc.i-_forRange<6.10.57

digital_arts_inc.i-_for_(windows_version_only)Range<6.00.57

digital_arts_inc.i-_for_zaq_(windows_version_only)Range<6.00.57

digital_arts_inc.i-_forRange<2.00.30

digital_arts_inc.i-filter_multiagent_for_windowsRange<4.93R13

digital_arts_inc.digitalarts@cloud_agent_(for_windows)Range<1.70R01

optim_corporation optimal_biz_web_filtering_powered_by_i-filter_(windows_version)Range<4.9313

inventit_inc.mobiconnect_i-filter_browser_option_multiagent_for_windowsRange<4.93R13

fujitsu_limited i-filter_browser_&_cloud_multiagent_for_windowsRange<4.93R13

[
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター 10 (Windows version only)",
    "versions": [
      {
        "version": "prior to Ver.10.02.00",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター 6.0",
    "versions": [
      {
        "version": "prior to Ver.6.00.57",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター for ネットカフェ",
    "versions": [
      {
        "version": "prior to Ver.6.10.57",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター for マルチデバイス (Windows version only)",
    "versions": [
      {
        "version": "prior to Ver.6.00.57",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター for ZAQ (Windows version only)",
    "versions": [
      {
        "version": "prior to Ver.6.00.57",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-フィルター for プロバイダー",
    "versions": [
      {
        "version": "prior to Ver.2.00.30",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "i-FILTER ブラウザー＆クラウド MultiAgent for Windows",
    "versions": [
      {
        "version": "prior to Ver.4.93R13",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Digital Arts Inc.",
    "product": "DigitalArts@Cloud Agent (for Windows)",
    "versions": [
      {
        "version": "prior to Ver.1.70R01",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "OPTiM Corporation",
    "product": "Optimal Biz Web Filtering Powered by i-FILTER (Windows version)",
    "versions": [
      {
        "version": "prior to 4.93R13",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Inventit Inc.",
    "product": "MobiConnect i-FILTER Browser Option MultiAgent for Windows",
    "versions": [
      {
        "version": "prior to Ver.4.93R13",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "i-FILTER Browser & Cloud MultiAgent for Windows",
    "versions": [
      {
        "version": "prior to Ver.4.93R13",
        "status": "affected"
      }
    ]
  }
]

Source	Link
daj	www.daj.jp/shared/php/downloadset/c/parts.php
daj	www.daj.jp/shared/php/downloadset/c/parts.php
sd	www.sd.fjsd001.dfcenter.jp.fujitsu.com/portal/ja/kb/articles/windows%E3%81%AE%E3%83%AA%E3%83%AA%E3%83%BC%E3%82%B9%E3%83%8E%E3%83%BC%E3%83%88
mobi-connect	www.mobi-connect.net/file/ifilter/
jvn	www.jvn.jp/en/jp/JVN17307628/
biz3	www.biz3.optim.co.jp/

19 May 2026 15:26Current

5.7Medium risk

Vulners AI Score5.7

CVSS 35.5

CVSS 46.8

EPSS0.00018

SSVC

CWE-276

iフィルターファイルアクセス権限設定非管理者システムディレクトリバックアップディレクトリ