HarborGuard / CVE
Back to search
HIGHCVE-2026-43680Published Modified CNA apple

CVE-2026-43680: A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to bypass a front-end restriction on OS Script schedule types and execute arbitrary operating system commands on the underlying host

A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to bypass a front-end restriction on OS Script schedule types and execute arbitrary operating system commands on the underlying host. This issue is fixed in FileMaker Cloud 2.22.0.5.

Metrics

CVSS v3.1
7.2
Severity
HIGH
Fixed in
2.22.0.5
Affected Products
1

Fix available

2.22.0.5
Affected packages
  • Claris / FileMaker Cloud
    < 2.22.0.5 (from 0)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
References
CVE-2026-43680: A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to bypass a front-end restriction on OS Script schedule types and execute arbitrary operating system commands on the underlying host | HarborGuard CVE