CVE-2026-8108 PUBLISHED

Fuji Electric Tellus Exposed Dangerous Method or Function

Assigner: icscert
Reserved: 07.05.2026 Published: 12.05.2026 Updated: 13.05.2026

The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 7.8

Product Status

Vendor Fuji Electric
Product Tellus
Versions Default: unaffected
  • Version 5.0.2 is affected

Workarounds

Fuji Electric recommends that Tellus be installed only with administrator privileges.

Credits

  • Kim Myung-gyu of Trend Micro Zero Day Initiative reported this vulnerability to CISA. finder

References

Problem Types

  • CWE-749 CWE