CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
98.8%
Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a … (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe.
Vendor | Product | Version | CPE |
---|---|---|---|
cybozu | cybozu_office | * | cpe:2.3:a:cybozu:cybozu_office:*:*:*:*:*:*:*:* |
cybozu | share_360 | * | cpe:2.3:a:cybozu:share_360:*:*:*:*:*:*:*:* |