Known Vulnerabilities for products from Cybozu
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Cybozu".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-20807 | Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.0.0 to 3.1.9 allows a remote attacker ... | 6.1 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20806 | Open redirect vulnerability in Cybozu Remote Service 3.0.0 to 3.1.9 allows remote attackers to redirect users to arbitrary we... | 6.1 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20805 | Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authentic... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20804 | Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to cause a denial of service (DoS) condition via ... | 6.5 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20803 | Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated a... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20802 | HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to alter the information... | 5.3 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20801 | Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to conduct XML External Entity (XXE) attacks and ... | 6.5 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20800 | Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated atta... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20799 | Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authentic... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20798 | Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authentic... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20797 | Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticat... | 5.4 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20796 | Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attac... | 6.5 - MEDIUM | 2021-10-13 | 2021-10-19 |
| CVE-2021-20795 | Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a rem... | 8.8 - HIGH | 2021-10-13 | 2021-10-19 |
| CVE-2021-20775 | Improper input validation vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker t... | 4.3 - MEDIUM | 2021-08-18 | 2021-08-24 |
| CVE-2021-20774 | Cross-site scripting vulnerability in some functions of E-mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote authenticated ... | 5.4 - MEDIUM | 2021-08-18 | 2021-08-24 |
| CVE-2021-20773 | There is a vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.0, which may allow a remote authenticated attacker to dele... | 4.3 - MEDIUM | 2021-08-18 | 2022-07-12 |
| CVE-2021-20772 | Information disclosure vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to o... | 4.3 - MEDIUM | 2021-08-18 | 2022-06-28 |
| CVE-2021-20771 | Cross-site scripting vulnerability in some functions of Group Mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote attacker t... | 6.1 - MEDIUM | 2021-08-18 | 2022-09-30 |
| CVE-2021-20770 | Cross-site scripting vulnerability in Message of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to injec... | 5.4 - MEDIUM | 2021-08-18 | 2021-08-24 |
| CVE-2021-20769 | Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to inje... | 5.4 - MEDIUM | 2021-08-18 | 2021-08-24 |
Known software with vulnerabilities from Cybozu
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Cybozu | Cybozu Live | 1.0.4 |
| Application | Cybozu | Cybozu Office | 9.3.0 |
| Application | Cybozu | Desktop | 2.0.23 |
| Application | Cybozu | Dezie | 8.0.0 |
| Application | Cybozu | Garoon | 2.0.0 |
| Application | Cybozu | Kintone | 1.0.0 |
| Application | Cybozu | Kunai | 2.0.3 |
| Application | Cybozu | Kunai Browser For Remote Service | - |
| Application | Cybozu | Mailwise | 1.0.1 |
| Application | Cybozu | Office | 9.0 |
| Application | Cybozu | Remote Service Manager | 2.2.0 |