2 matches found
CVE-2018-16172
CVE-2018-16172 affects Cybozu Remote Service (versions 3.0.0–3.1.8). The issue is an improper countermeasure against clickjacking on the client certificates management screen, which could allow a remote attacker to trick a user into deleting the user’s registered client certificate. Impact descri...
JVN#23161885: Multiple vulnerabilities in Cybozu Remote Service
Cybozu Remote Service provided by Cybozu, Inc. contains multiple vulnerabilities listed below. Upload of arbitrary files in logo setting screen CWE-434 - CVE-2018-16169 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H| Base Score: 8.8 CVSS v2|...