Lucene search
Japan Vulnerability NotesJVN:21103639HistoryAug 13, 2013 - 12:00 a.m.
JVN#21103639: Cybozu Mailwise vulnerable to information disclosure
2013-08-1300:00:00
Japan Vulnerability Notes
jvn.jp
21
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
52.4%
Cybozu Mailwise contains a vulnerability that may display contents of another email in the subject field.
Impact
Contents of an email may be obtained by a user that does not have privileges to access that original email.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- Cybozu Mailwise 5.0.4 and 5.0.5
Related
cvelist
cvelist
CVE-2013-4698
2013-08-16 01:00:00
cve
cve
CVE-2013-4698
2013-08-16 01:55:16
prion
prion
Design/Logic Flaw
2013-08-16 01:55:00
nvd
nvd
CVE-2013-4698
2013-08-16 01:55:16
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
52.4%
Related for JVN:21103639