Cybozu

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-5587 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Cybozu Garoon 4.0.0 to 5.0.1 allow remote authenticated attackers to obtain unintended information via unspecified vectors.
CVE-2020-5586 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.
CVE-2020-5585 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.
CVE-2020-5584 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Cybozu Garoon 4.0.0 to 5.0.1 allow remote attackers to obtain unintended information via unspecified vectors.
CVE-2020-5583 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to obtain unauthorized Multi-Report's data via unspecified vectors.
CVE-2020-5582 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to alter the data for the file attached to Report via unspecified vectors.
CVE-2020-5581 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Path traversal vulnerability in Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to obtain unintended information via unspecified vectors.
CVE-2020-5580 1Cybozu 1Garoon Nov 21, 2024 Jun 30, 2020 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to view and/or alter Single sign-on settings via unspecified vectors.
CVE-2020-5573 1Cybozu 1Kintone Nov 21, 2024 May 29, 2020 N/A· v4 4.6 MEDIUM· v3 2.1 LOW· v2 Android App 'kintone mobile for Android' 1.0.0 to 2.5 allows an attacker to obtain credential information registered in the product via unspecified vectors.
CVE-2020-5572 1Cybozu 1Mailwise Nov 21, 2024 May 29, 2020 N/A· v4 4.6 MEDIUM· v3 2.1 LOW· v2 Android App 'Mailwise for Android' 1.0.0 to 1.0.1 allows an attacker to obtain credential information registered in the product via unspecified vectors.
CVE-2020-5537 1Cybozu 1Desktop Nov 21, 2024 May 25, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Cybozu Desktop for Windows 2.0.23 to 2.2.40 allows remote code execution via unspecified vectors.
CVE-2020-5568 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 5.0.0 allows remote attackers to inject arbitrary web script or HTML via the applications 'Messages' and 'Bulletin Board'.
CVE-2020-5567 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in Application Menu.
CVE-2020-5566 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Improper authorization vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote authenticated attackers to alter the application's data via the applications 'E-mail' and 'Messages'.
CVE-2020-5565 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Improper input validation vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows a remote authenticated attacker to alter the application's data via the applications 'Workflow' and 'MultiReport'.
CVE-2020-5564 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the application 'E-mail'.
CVE-2020-5563 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in the affected product via the API.
CVE-2020-5562 1Cybozu 1Garoon Nov 21, 2024 Apr 28, 2020 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Server-side request forgery (SSRF) vulnerability in Cybozu Garoon 4.6.0 to 4.6.3 allows a remote attacker with an administrative privilege to issue arbitrary HTTP requests to other web servers via V-CUBE Meeting function...Show more Server-side request forgery (SSRF) vulnerability in Cybozu Garoon 4.6.0 to 4.6.3 allows a remote attacker with an administrative privilege to issue arbitrary HTTP requests to other web servers via V-CUBE Meeting function.Show less
CVE-2019-6023 1Cybozu 1Office Nov 21, 2024 Dec 26, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated attackers to bypass access restriction which may result in obtaining data without access privileges via the application 'Address'.
CVE-2019-6022 1Cybozu 1Office Nov 21, 2024 Dec 26, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated attackers to alter arbitrary files via the 'Customapp' function.

Previous 1...567...17 Next