Office Security Vulnerabilities and Issues — Office CVE List

Lucene search

CybozuOffice

7 matches found

CVE•added 2018/06/26 2:29 p.m.•48 views

CVE-2018-0528

Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers to bypass authentication to view the schedules that are not permitted to access via unspecified vectors.

4.3CVSS5.1AI score0.00176EPSS

CVE•added 2018/06/26 2:29 p.m.•43 views

CVE-2018-0527

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

6.1CVSS6AI score0.00238EPSS

CVE•added 2018/06/26 2:29 p.m.•40 views

CVE-2018-0529

Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to cause a denial of service via unspecified vectors.

4.3CVSS5.2AI score0.00387EPSS

CVE•added 2018/06/26 2:29 p.m.•40 views

CVE-2018-0567

Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass access restriction to access and write non-public data via unspecified vectors.

6.5CVSS6.1AI score0.00274EPSS

CVE•added 2018/06/26 2:29 p.m.•38 views

CVE-2018-0565

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

6.1CVSS6AI score0.00238EPSS

CVE•added 2018/06/26 2:29 p.m.•37 views

CVE-2018-0526

Cybozu Office 10.0.0 to 10.7.0 allow remote attackers to display an image located in an external server via unspecified vectors.

4.3CVSS5.2AI score0.00255EPSS

CVE•added 2018/06/26 2:29 p.m.•37 views

CVE-2018-0566

Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass authentication to obtain the schedules without access privilege via unspecified vectors.

4.3CVSS5.2AI score0.00176EPSS