Vulnerabilities > Cybozu
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-26 | CVE-2018-0567 | Unspecified vulnerability in Cybozu Office Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass access restriction to access and write non-public data via unspecified vectors. | 6.5 |
| 2018-06-26 | CVE-2018-0566 | Improper Privilege Management vulnerability in Cybozu Office Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass authentication to obtain the schedules without access privilege via unspecified vectors. | 4.0 |
| 2018-06-26 | CVE-2018-0565 | Cross-site Scripting vulnerability in Cybozu Office Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0559 | Cross-site Scripting vulnerability in Cybozu Mailwise Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'Address' via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0558 | Cross-site Scripting vulnerability in Cybozu Mailwise Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML in 'System settings' via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0557 | Cross-site Scripting vulnerability in Cybozu Mailwise Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0529 | Improper Input Validation vulnerability in Cybozu Office Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to cause a denial of service via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0528 | Information Exposure vulnerability in Cybozu Office Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers to bypass authentication to view the schedules that are not permitted to access via unspecified vectors. | 4.0 |
| 2018-06-26 | CVE-2018-0527 | Cross-site Scripting vulnerability in Cybozu Office Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2018-06-26 | CVE-2018-0526 | Information Exposure vulnerability in Cybozu Office Cybozu Office 10.0.0 to 10.7.0 allow remote attackers to display an image located in an external server via unspecified vectors. | 4.3 |