Soliton Systems FileZen arbitrary command injection flaw (CVE-2026-25108)
Vulnerability
Summary
Hide ▲
Show ▼
CVE-2026-25108 in Soliton Systems’ FileZen products was being actively exploited, creating immediate command-execution risk for affected deployments. The flaw is an arbitrary command injection issue, which can let attackers run unauthorized commands on vulnerable systems. JPCERT/CC tied the exploitation to a live threat disclosed late last week.
Related Happenings
Linux kernel AppArmor confused deputy vulnerabilities CrackArmor security flaw
Vulnerability
First: 13.03.2026 10:18
Last: 13.03.2026 10:18
Sources 1
About this happening:
Researchers disclosed **CrackArmor**, nine **confused deputy** flaws in the **Linux kernel's AppArmor module** that can let **unprivileged users** bypass protections, gain **root*...
Linux kernel AppArmor confused deputy vulnerabilities CrackArmor security flaw
VulnerabilityAbout this happening: Researchers disclosed **CrackArmor**, nine **confused deputy** flaws in the **Linux kernel's AppArmor module** that can let **unprivileged users** bypass protections, gain **root*...
Sangoma FreePBX web shell exploitation wave (CVE-2025-64328)
Exploitation Wave
First: 27.02.2026 19:59
Last: 27.02.2026 19:59
Sources 1
About this happening:
More than **900 Sangoma FreePBX** instances remain **web-shell infected** after an **ongoing exploitation wave** tied to **CVE-2025-64328**. The affected systems span the **U.S.**...
Sangoma FreePBX web shell exploitation wave (CVE-2025-64328)
Exploitation WaveAbout this happening: More than **900 Sangoma FreePBX** instances remain **web-shell infected** after an **ongoing exploitation wave** tied to **CVE-2025-64328**. The affected systems span the **U.S.**...
Soliton Systems K.K FileZen 5.0.11 mitigation advisory
Advisory/Mitigation
First: 25.02.2026 07:23
Last: 25.02.2026 07:23
Sources 1
How related:
"If you have been attacked or suspect that you have been victimized by this vulnerability, please consider not only updating to V5.0.11 or later, but also changing all user passwords as a precaution, as an attacker can log on with at least one real account," it added.
About this happening:
**Soliton Systems K.K** advised **FileZen** users to upgrade to **version 5.0.11 or later** and change passwords after exploitation reports, reducing risk from **CVE-2026-25108**...
Soliton Systems K.K FileZen 5.0.11 mitigation advisory
Advisory/MitigationHow related: "If you have been attacked or suspect that you have been victimized by this vulnerability, please consider not only updating to V5.0.11 or later, but also changing all user passwords as a precaution, as an attacker can log on with at least one real account," it added.
About this happening: **Soliton Systems K.K** advised **FileZen** users to upgrade to **version 5.0.11 or later** and change passwords after exploitation reports, reducing risk from **CVE-2026-25108**...
Washington Hotel brand in Japan / Fujita Kanko hit by ransomware attack
Incident
First: 16.02.2026 23:10
Last: 16.02.2026 23:10
Sources 1
How related:
The Washington Hotel brand in Japan has announced that that its servers were compromised in a ransomware attack, exposing various business data.
About this happening:
The **Washington Hotel** brand in **Japan** disclosed a **ransomware attack** that compromised its servers and exposed **various business data**. The incident matters because some...
Washington Hotel brand in Japan / Fujita Kanko hit by ransomware attack
IncidentHow related: The Washington Hotel brand in Japan has announced that that its servers were compromised in a ransomware attack, exposing various business data.
About this happening: The **Washington Hotel** brand in **Japan** disclosed a **ransomware attack** that compromised its servers and exposed **various business data**. The incident matters because some...
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector Action
First: 04.02.2026 07:50
Last: 04.02.2026 07:50
Sources 1
About this happening:
**CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector ActionAbout this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
Timeline
-
16.02.2026 23:10 3 articles · 3mo ago
JPCERT/CC discloses active exploitation of CVE-2026-25108 in FileZen
Initial DisclosureJPCERT/CC disclosed that attackers were exploiting an arbitrary command injection flaw in Soliton Systems’ FileZen products, tracked as CVE-2026-25108, creating command-execution risk for affected deployments and prompting exposure assessment and remediation.
Show sources
- Washington Hotel in Japan discloses ransomware infection incident — www.bleepingcomputer.com — 16.02.2026 23:10
- Washington Hotel in Japan discloses ransomware infection incident — www.bleepingcomputer.com — 16.02.2026 23:10
- CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability — thehackernews.com — 25.02.2026 07:23