CVE-2026-27653

MEDIUM 6.7

CVSS Score

6.7

EPSS Score

0.0%

EPSS Percentile

0th

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges.

Vendor	soliton systems k.k.
Product	soliton securebrowser for onegate
Published	Feb 27, 2026
Last Updated	Feb 27, 2026

Stay Ahead of the Next One

Get instant alerts for soliton systems k.k. soliton securebrowser for onegate

Be the first to know when new medium vulnerabilities affecting soliton systems k.k. soliton securebrowser for onegate are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Versions

Soliton Systems K.K. / Soliton SecureBrowser for OneGate

V1.0.0

Soliton Systems K.K. / Soliton SecureBrowser II

V2.0.0 to V2.0.14

Soliton Systems K.K. / Soliton SecureWorkspace (formerly WrappingBox)

V1.0.0 to V1.4.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

soliton.co.jp: https://www.soliton.co.jp/support/2026/006679.html jvn.jp: https://jvn.jp/en/jp/JVN41357120/