Cybozu Office Security Vulnerabilities and Issues — Cybozu Office CVE List

Lucene search

CybozuCybozu Office

5 matches found

CVE•added 2022/08/18 8:15 a.m.•52 views

CVE-2022-30693

Information disclosure vulnerability in the system configuration of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to obtain the data of the product via unspecified vectors.

5.3CVSS5.3AI score0.00289EPSS

CVE•added 2010/05/24 7:30 p.m.•47 views

CVE-2010-2029

Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.

5.8CVSS6.7AI score0.00351EPSS

CVE•added 2017/04/28 4:59 p.m.•46 views

CVE-2017-2114

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5.4AI score0.00181EPSS

CVE•added 2006/08/31 10:4 p.m.•36 views

CVE-2006-4492

Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors.

5CVSS7AI score0.00376EPSS

CVE•added 2013/07/20 3:38 a.m.•35 views

CVE-2013-3656

Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL.

5.8CVSS7.2AI score0.00256EPSS