Local Privilege Escalation in i-フィルター Products by DAJ
CVE-2025-57846

8.5HIGH

Key Information:

Vendor

Digital Arts Inc.

Status
I-フィルター 6.0
I-フィルター For マルチデバイス
I-フィルター For Zaq
I-フィルター For ネットカフェ
Vendor
CVE Published:
27 August 2025

What is CVE-2025-57846?

Multiple i-フィルター products by DAJ feature incorrect default permissions, which could be exploited by a local authenticated attacker. By taking advantage of this vulnerability, the attacker might replace a service executable on the system where the product operates, which can potentially lead to arbitrary code execution with elevated SYSTEM privileges. This poses significant risks to system integrity and security, as unauthorized actions could be performed without detection.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FENCE-Mobile RemoteManager i-FILTER Browser Service prior to 4.93R11

i-FILTER ブラウザー&クラウド MultiAgent for Windows prior to 4.93.R11

i-フィルター 6.0 prior to 6.00.55

References

https://www.daj.jp/shared/php/downloadset/c/parts.php?pag...
https://www.daj.jp/shared/php/downloadset/c/parts.php?pag...
https://jvn.jp/en/jp/JVN55678602/

CVSS V4

Score:
8.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

CVSS V3.0

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.