Skip to main content

Filezen CVE-2026-25108

HIGH
OS Command Injection (CWE-78)
2026-02-13 vultures@jpcert.or.jp
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Mar 12, 2026 - 22:02 vuln.today
Added to CISA KEV
Feb 24, 2026 - 21:38 cisa
CISA KEV
CIRCL Exploitation Confirmed
Feb 24, 2026 - 21:38 circl
CIRCL KEV
CVE Published
Feb 13, 2026 - 04:15 nvd
HIGH 8.8

DescriptionCVE.org

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command.

AnalysisAI

FileZen contains an OS command injection vulnerability (CVE-2026-25108, CVSS 8.8) that allows authenticated users to execute arbitrary commands when the Antivirus Check Option is enabled. KEV-listed with EPSS 18.6%, this vulnerability in the Japanese file-sharing appliance has been actively exploited in campaigns targeting organizations in Japan and Asia-Pacific.

Technical ContextAI

FileZen is a file-sharing appliance manufactured by Soliton Systems, widely deployed in Japanese government agencies and enterprises. When the antivirus check option is enabled, user-uploaded filenames or content is incorporated into OS commands for virus scanning without proper sanitization. An authenticated user can inject shell commands through crafted HTTP requests that are executed with the privileges of the FileZen service.

RemediationAI

Apply FileZen security update immediately. If unable to patch, disable the Antivirus Check Option temporarily. Restrict FileZen access to authorized networks. Audit uploaded files and user accounts for suspicious activity. Review stored files for potential data exposure.

Share

CVE-2026-25108 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy