Soliton A.I CyberSecurity Scoring
Soliton
Company Information
Website:http://www.soliton.co.jp
Employees number:214
Number of followers:462
NAICS:5415
Industry Type:IT Services and IT Consulting
Homepage:soliton.co.jp
Soliton Risk Score (AI oriented)
Between 750 and 799
SolitonIT Services and IT Consulting
Updated:
27/03/2026
27/03/2026
753/1000
Fair
Baa
Soliton Global Score (TPRM)
xxxx
SolitonIT Services and IT Consulting
Score locked

SolitonFair
Current Score
753Baa (FAIR)
01000
1 incidents
-1 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
754
JUNE 2026
754
MAY 2026
754
APRIL 2026
754
MARCH 2026
753
FEBRUARY 2026
754
Vulnerability
13 Feb 2026 • Soliton
Soliton Systems K.K.: Critical FileZen File Transfer Flaw Allows Arbitrary Command Execution
Critical FileZen Vulnerability Exploited in the Wild, Enabling OS Command Injection
753
CRITICAL-1
SOL1771237768
Critical FileZen Vulnerability Exploited in the Wild, Enabling OS Command Injection
A severe vulnerability in FileZen, a widely used file transfer solution from Japan’s Soliton Systems K.K., allows authenticated attackers to execute arbitrary operating system commands on vulnerable servers. Tracked as CVE-2026-25108, the flaw carries CVSS scores of 8.8 (v3.0) and 8.7 (v4.0), classifying it as a high-to-critical risk.
The vulnerability stems from an OS command injection weakness in FileZen’s Antivirus Check Option, where specially crafted HTTP requests sent by attackers with valid credentials can trigger malicious command execution under the application’s privileges. Exploitation could lead to data theft, malware deployment, or full system compromise, with attackers gaining system-level access.
Affected versions include FileZen V-5.0.0 to V-5.0.10 and V-4.2.1 to V-4.2.8, while FileZen S versions remain unaffected. Japan’s Vulnerability Notes (JVN) confirmed active exploitation attempts in a February 13, 2026 advisory, warning organizations to act swiftly. Though no public exploit code exists, the low barrier to attack requiring only authentication makes it particularly dangerous in shared environments.
Soliton Systems released a patch (V-5.0.11) in collaboration with JPCERT/CC under Japan’s early warning partnership, closing the injection vector without disrupting core functionality. Organizations are advised to upgrade immediately, prioritizing systems with the Antivirus Check Option enabled. Security teams should also review logs for suspicious activity, including unusual logins or command artifacts, dating back to mid-February 2026.
The incident underscores risks in file transfer tools with integrated scanning features, with temporary mitigation possible by disabling the Antivirus Check Option though patching remains the only definitive solution. Soliton has emphasized secure defaults in future releases to prevent similar vulnerabilities. JPCERT/CC’s alert (JPCERT-AT-2026-0004) provides additional guidance, including indicators of compromise (IOCs) for failed exploitation attempts.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
JANUARY 2026
754
DECEMBER 2025
754
NOVEMBER 2025
754
OCTOBER 2025
754
SEPTEMBER 2025
754
AUGUST 2025
754
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Soliton ??
What was Soliton's A.I Rankiteo Cyber Score in June 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in May 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in April 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in March 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in February 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in January 2026 ??
What was Soliton's A.I Rankiteo Cyber Score in December 2025 ??
What was Soliton's A.I Rankiteo Cyber Score in November 2025 ??
What was Soliton's A.I Rankiteo Cyber Score in October 2025 ??
What was Soliton's A.I Rankiteo Cyber Score in September 2025 ??
What was Soliton's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Soliton's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Soliton ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Soliton's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?