Lucene search
Japan Vulnerability NotesJVN:06251813HistoryApr 15, 2013 - 12:00 a.m.
JVN#06251813: Multiple Cybozu products vulnerable to cross-site request forgery
2013-04-1500:00:00
Japan Vulnerability Notes
jvn.jp
12
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
47.1%
Multiple Cybozu products contain a cross-site request forgery vulnerability.
Impact
If a user accesses a specially crafted URL while logged in, user passwords or administrator passwords may be altered.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- Cybozu Office 9.2.3 and earlier
- Cybozu Office 8.1.5 and earlier
- Cybozu Mailwise 5.0.3 and earlier
- Cybozu Mailwise 4.0.5 and earlier
- Cybozu Dezie 8.0.6 and earlier
Related
cve
cve
CVE-2013-2305
2022-10-03 16:14:59
CVE-2013-3269
2013-04-25 10:55:02
nvd
nvd
CVE-2013-2305
2013-04-25 10:55:02
CVE-2013-3269
2013-04-25 10:55:02
prion
prion
Cross site request forgery (csrf)
2013-04-25 10:55:00
Cross site request forgery (csrf)
2013-04-25 10:55:00
cvelist
cvelist
CVE-2013-2305
2022-10-03 16:14:59
CVE-2013-3269
2013-04-25 10:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
47.1%
Related for JVN:06251813