Lucene search
Japan Vulnerability NotesJVN:52363223HistoryJun 27, 2008 - 12:00 a.m.
JVN#52363223: Cybozu Garoon vulnerable to arbitrary script execution
2008-06-2700:00:00
Japan Vulnerability Notes
jvn.jp
11
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.3%
Cybozu Garoon, a groupware from Cybozu, contains a vulnerability that allows an attacker to execute an arbitrary script when a user views RSS feed.
Impact
An arbitrary script could be executed on the user’s web browser.
Solution
Update the Software
Apply the latest update provided by the vendor.
Products Affected
- Cybozu Garoon version 2.0.0 - 2.1.3
Related
cve
cve
CVE-2008-6570
2009-03-31 17:30:00
CVE-2011-1332
2022-10-03 16:15:11
cvelist
cvelist
CVE-2008-6570
2009-03-31 17:00:00
CVE-2011-1332
2022-10-03 16:15:11
nvd
nvd
CVE-2008-6570
2009-03-31 17:30:00
CVE-2011-1332
2011-06-29 17:55:01
prion
prion
Cross site scripting
2009-03-31 17:30:00
Cross site scripting
2011-06-29 17:55:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.3%
Related for JVN:52363223