CVE-2026-25108
Soliton Systems K.K FileZen OS Command Injection Vulnerability
CVSS
—
Sin CVSS
EPSS
5.0%
p91
KEV
SÍ
24 feb 2026
Exploit Today
77
0-100
Publicado: — · Última mod.: —
Producto
Soliton Systems K.K / FileZen
Vulnerabilidad
Soliton Systems K.K FileZen OS Command Injection Vulnerability
Añadido a KEV
24 feb 2026
Remediar antes de
17 mar 2026
Uso conocido en ransomware
No
Descripción resumida
Soliton Systems K.K FileZen contains an OS command injection vulnerability when an user logs-in to the affected product and sends a specially crafted HTTP request.
Acción requerida
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notas
https://jvn.jp/en/jp/JVN84622767/ ; https://nvd.nist.gov/vuln/detail/CVE-2026-25108
Sin CVEs relacionados por CWE o producto.