Lucene search
+L

20 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-11437

Malware in sbrugna...

4.9CVSS5.2AI score0.01057EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-7740

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00196EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 3:47 a.m.6 views

SUSE CVE-2021-20315

A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to kill existing applications and start n...

6.1CVSS6.5AI score0.00196EPSS
Exploits0References3
prion
prion
added 2022/02/18 6:15 p.m.21 views

Design/Logic Flaw

A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to kill existing applications and start n...

3.6CVSS6AI score0.00196EPSS
Exploits0References1Affected Software2
osv
osv
added 2022/02/18 6:15 p.m.5 views

UBUNTU-CVE-2021-20315

A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to kill existing applications and start n...

6.1CVSS5.8AI score0.00196EPSS
Exploits0References3
nvd
nvd
added 2020/04/28 4:15 a.m.27 views

CVE-2020-5567

Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in Application Menu...

7.5CVSS7.6AI score0.01434EPSS
Exploits0References2
osv
osv
added 2020/04/28 4:15 a.m.3 views

CVE-2020-5567

Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in Application Menu...

7.5CVSS6.6AI score0.01434EPSS
Exploits0References2
cvelist
cvelist
added 2020/04/28 3:15 a.m.29 views

CVE-2020-5567

Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in Application Menu...

7.6AI score0.01434EPSS
Exploits0References2
openvas
openvas
added 2017/09/01 12:0 a.m.15 views

Cybozu Garoon 3.5.0 - 4.2.5 DoS Vulnerability

Cybozu Garoon is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cybozu:garoon";...

4.9CVSS5.4AI score0.01057EPSS
Exploits0References2
osv
osv
added 2017/08/29 1:35 a.m.5 views

CVE-2017-2254

Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input...

4.9CVSS5.8AI score0.01057EPSS
Exploits0References2
nvd
nvd
added 2017/08/29 1:35 a.m.23 views

CVE-2017-2254

Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input...

4.9CVSS5.1AI score0.01057EPSS
Exploits0References2
prion
prion
added 2017/08/29 1:35 a.m.21 views

Input validation

Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input...

4CVSS5.2AI score0.01057EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2017/08/28 8:0 p.m.26 views

CVE-2017-2254

Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input...

5.2AI score0.01057EPSS
Exploits0References2
cnvd
cnvd
added 2017/07/11 12:0 a.m.4 views

Cybozu Garoon Cross-Site Scripting Vulnerability (CNVD-2017-15107)

Cybozu Garoon is a portal-type OA office system of Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions, and supports free switching among three languages Chinese, Japanese, and English. A cross-site scripting...

4.8CVSS6.2AI score0.00603EPSS
Exploits0References1
osv
osv
added 2017/07/07 1:29 p.m.4 views

CVE-2017-2146

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.4 allows remote attackers to inject arbitrary web script or HTML via application menu...

4.8CVSS5.9AI score0.00603EPSS
Exploits0References2
prion
prion
added 2017/07/07 1:29 p.m.24 views

Cross site scripting

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.4 allows remote attackers to inject arbitrary web script or HTML via application menu...

3.5CVSS5.1AI score0.00603EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2017/07/07 1:29 p.m.22 views

CVE-2017-2146

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.4 allows remote attackers to inject arbitrary web script or HTML via application menu...

4.8CVSS5.1AI score0.00603EPSS
Exploits0References2
cve
cve
added 2017/07/07 1:0 p.m.50 views

CVE-2017-2146

CVE-2017-2146 is a cross-site scripting vulnerability in Cybozu Garoon version 3.0.0 through 4.2.4. The issue allows a remote attacker to inject arbitrary web script or HTML via the application menu, potentially causing arbitrary script execution in the logged-in user’s browser. Affected products...

4.8CVSS5.1AI score0.00603EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2017/07/07 1:0 p.m.23 views

CVE-2017-2146

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.4 allows remote attackers to inject arbitrary web script or HTML via application menu...

5.2AI score0.00603EPSS
Exploits0References2
jvn
jvn
added 2017/07/03 6:23 a.m.4 views

Cybozu Garoon vulnerable to cross-site scripting

Overview Cybozu Garoon provided by Cybozu, Inc. contains a cross-site scripting in the application menu. Cybozu, Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact An arbitrary script may be executed on the logged-in user's web browser. Solution Upda...

4.8CVSS6.1AI score0.00603EPSS
Exploits0References6
Rows per page
Query Builder