CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to obtain sensitive e-mail content intended for different persons in opportunistic circumstances by reading Subject header lines within the user's own mailbox...

3.5CVSS6.4AI score0.00225EPSS

Exploits0References1

CNVD•added 2020/06/01 12:0 a.m.•1 views

Cybozu Mailwise for Android Information Disclosure Vulnerability

Cybozu Mailwise for Android is an e-mail client application based on the Android platform from Cybozu. An information disclosure vulnerability exists in Cybozu Mailwise versions 1.0.0 to 1.0.1 for Android. The vulnerability originates from an error such as a configuration error in the network...

4.6CVSS6.2AI score0.00063EPSS

Exploits0References1

OSV•added 2019/01/09 11:29 p.m.•2 views

CVE-2018-0702

Directory traversal vulnerability in Cybozu Mailwise 5.0.0 to 5.4.5 allows remote attackers to delete arbitrary files via unspecified vectors...

7.5CVSS5.9AI score0.00903EPSS

Exploits0References2

NVD•added 2019/01/09 11:29 p.m.•13 views

CVE-2018-0702

Directory traversal vulnerability in Cybozu Mailwise 5.0.0 to 5.4.5 allows remote attackers to delete arbitrary files via unspecified vectors...

7.5CVSS7.5AI score0.00903EPSS

Exploits0References2

Prion•added 2019/01/09 11:29 p.m.•14 views

Directory traversal

Directory traversal vulnerability in Cybozu Mailwise 5.0.0 to 5.4.5 allows remote attackers to delete arbitrary files via unspecified vectors...

6.4CVSS7.5AI score0.00903EPSS

Exploits0References2Affected Software1

CVE•added 2019/01/09 10:0 p.m.•46 views

CVE-2018-0702

The CVE-2018-0702 issue affects Cybozu Mailwise 5.0.0–5.4.5, where a directory traversal vulnerability (CWE-22) could be exploited by a remote attacker to delete arbitrary files on the server. Root cause is due to insecure handling of HTTP request parameters in Mailwise, as documented by multiple...

7.5CVSS7.4AI score0.00903EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/01/09 10:0 p.m.•15 views

CVE-2018-0702

Directory traversal vulnerability in Cybozu Mailwise 5.0.0 to 5.4.5 allows remote attackers to delete arbitrary files via unspecified vectors...

7.5AI score0.00903EPSS

Exploits0References2

CNVD•added 2018/11/15 12:0 a.m.•1 views

Cybozu Mailwise Directory Traversal Vulnerability

Cybozu Mailwise is a web-based e-mail system. A directory traversal vulnerability exists in Cybozu Mailwise, which can be exploited by a remote attacker to delete arbitrary files on the server...

7.5CVSS7.9AI score0.00903EPSS

Exploits0References1

Japan Vulnerability Notes•added 2018/11/14 6:34 a.m.•1 views

Cybozu Mailwise vulnerable to directory traversal

Overview Cybozu Mailwise provided by Cybozu, Inc. contains a directory traversal vulnerability CWE-22 due to a flaw in processing parameter of the HTTP request. Yuji Tounai reported this vulnerability to Cybozu, Inc., and Cybozu, Inc. reported this vulnerability to JPCERT/CC to notify users of it...

8.6CVSS6.8AI score0.00903EPSS

Exploits0References5

Japan Vulnerability Notes•added 2018/11/14 12:0 a.m.•412 views

JVN#83739174: Cybozu Mailwise vulnerable to directory traversal

Cybozu Mailwise provided by Cybozu, Inc. contains a directory traversal vulnerability CWE-22 due to a flaw in processing parameter of the HTTP request. Impact A remote attacker may delete arbitrary files on the server. Solution Update the Software Update to the latest version according to the...

7.5CVSS7.5AI score0.00903EPSS

Exploits0

OSV•added 2018/06/26 2:29 p.m.•3 views

CVE-2018-0557

Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors...

6.1CVSS5.9AI score0.00238EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by