Arbitrary Code Execution in Claris FileMaker Server
CVE-2026-43752
4.9MEDIUM
What is CVE-2026-43752?
An authenticated administrator may exploit a security flaw in the Claris FileMaker Server allowing them to execute arbitrary code on the host system. This risk arises from the ability to upload malicious files through the Open Source LLM setup feature located in the Admin Console. The issue has been remedied in the release of FileMaker Server version 26.0.1.
Affected Version(s)
FileMaker Server 0 < 26.0.1
