Known Vulnerabilities for products from Cybozu

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Cybozu".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-20807 Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.0.0 to 3.1.9 allows a remote attacker ... 6.1 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20806 Open redirect vulnerability in Cybozu Remote Service 3.0.0 to 3.1.9 allows remote attackers to redirect users to arbitrary we... 6.1 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20805 Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authentic... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20804 Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to cause a denial of service (DoS) condition via ... 6.5 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20803 Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated a... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20802 HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to alter the information... 5.3 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20801 Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to conduct XML External Entity (XXE) attacks and ... 6.5 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20800 Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated atta... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20799 Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authentic... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20798 Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authentic... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20797 Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticat... 5.4 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20796 Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attac... 6.5 - MEDIUM 2021-10-13 2021-10-19
CVE-2021-20795 Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a rem... 8.8 - HIGH 2021-10-13 2021-10-19
CVE-2021-20775 Improper input validation vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker t... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20774 Cross-site scripting vulnerability in some functions of E-mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote authenticated ... 5.4 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20773 There is a vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.0, which may allow a remote authenticated attacker to dele... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20772 Information disclosure vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to o... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20771 Cross-site scripting vulnerability in some functions of Group Mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote attacker t... 6.1 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20770 Cross-site scripting vulnerability in Message of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to injec... 5.4 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20769 Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to inje... 5.4 - MEDIUM 2021-08-18 2021-08-24

Known software with vulnerabilities from Cybozu

Type Vendor Product Version
ApplicationCybozuCybozu Live1.0.4
ApplicationCybozuCybozu Office9.3.0
ApplicationCybozuDesktop2.0.23
ApplicationCybozuDezie8.0.0
ApplicationCybozuGaroon2.0.0
ApplicationCybozuKintone1.0.0
ApplicationCybozuKunai2.0.3
ApplicationCybozuKunai Browser For Remote Service-
ApplicationCybozuMailwise1.0.1
ApplicationCybozuOffice9.0
ApplicationCybozuRemote Service Manager2.2.0

Popular searches for "Cybozu"

4776.T

finance.yahoo.com/quote/4776.T?.tsrc=applewf

Stocks Stocks om.apple.stocks 4776.T CYBOZU INC High: 2,539 Low: 2,506 Closed 2&0 8f1cf1ba-fe60-404d-761a-fa90a7ce3b34:st:4776.T :attribution

Cybozu

Cybozu, Inc. is a Tokyo-based software company that provides web-based groupware services including Cybozu Office and kintone. In addition to the main office in Tokyo, Cybozu also has offices in Matsuyama and Osaka, as well as several overseas subsidiaries in countries including Vietnam, China, Australia and the United States. The U.S.-based subsidiary, kintone Corporation, is located in San Francisco, California.

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report