Critical Vulnerability Information Vulnerability Overview Vulnerability ID: JVN#55678602 Vulnerability Type: Incorrect file access permission settings Affected Products: - i-フィルター 6.0 versions below 6.00.55 - i-フィルター for マルチデバイス (Windows version only) versions below 6.00.55 - i-フィルター for ZAQ (Windows version only) versions below 6.00.55 - i-フィルター for ネットカフェ versions below 6.10.55 - i-FILTER Browser & Cloud MultiAgent for Windows versions below 4.93R11 Description CVE ID: CVE-2025-57846 CVSS Score: - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VH:H/VA:H/SC:N/SI:N/SA:N Base Score 8.5 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/E:H/A:H Base Score 7.8 Impact A local authenticated attacker may replace the service executable file running the affected product on the system, potentially allowing execution of arbitrary code with SYSTEM privileges. Solution Update Software: Update the software to the latest version as per the developer’s guidance. Uninstall Software: If the software is pre-installed without a valid license, or remains installed after the license agreement has expired, uninstall it. Vendor Status Fujitsu Limited: Vulnerable, last updated on 2025/08/27 OPTIM Corporation: Vulnerable, last updated on 2025/08/27 References JPCERT/CC Addendum JPCERT/CC Vulnerability Analysis Additional Information Reporter: Kazuma Matsumoto from GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. Coordination: JPCERT/CC coordinated with the developers under the Information Security Early Warning Partnership.