cybozu

330 tracked vulnerabilities.

CVE-2026-22888 HIGH
Cybozu Garoon <6.0.3 - Info Disclosure
Feb 02, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-22881 MEDIUM
Cybozu Garoon 5.15.0-6.0.3 - Cross-Site Scripting in Message Function
Feb 02, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-20711 MEDIUM
Cybozu Garoon 5.0.0-6.0.3 - Cross-Site Scripting in E-mail Function
Feb 02, 2026
CVSS 6.1
EPSS 0.00
CVE-2024-39817 MEDIUM
Cybozu Office 10.0.0-10.8.6 - Authenticated Exposure of Sensitive Information via Custom App Search
Aug 06, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-39457 MEDIUM
Cybozu Garoon 6.0.0-6.0.1 - Cross-Site Scripting in PDF Preview
Jul 19, 2024
CVSS 5.4
EPSS 0.01
CVE-2024-31402 MEDIUM
Cybozu Garoon 5.0.0-5.15.2 - Authenticated Incorrect Authorization in Shared To-Dos
Jun 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-31399 MEDIUM
Cybozu Garoon 5.0.0-5.15.2 - Denial of Service via Crafted Mail Processing
Jun 11, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-31398 MEDIUM
Cybozu Garoon <5.15.2 - Info Disclosure
Jun 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-31397 MEDIUM
Cybozu Garoon 5.0.0-5.15.2 - Authenticated Denial of Service via Improper Handling of Extra Values
Jun 11, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-31404 MEDIUM
Cybozu Garoon <6.0.0 - Info Disclosure
Jun 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-31403 MEDIUM
Cybozu Garoon 5.0.0-6.0.0 - Authenticated Incorrect Authorization in Memo Data Handling
Jun 11, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-31401 CRITICAL
Cybozu Garoon 5.0.0-5.15.2 - Authenticated Stored Cross-Site Scripting
Jun 11, 2024
CVSS 9.0
EPSS 0.02
CVE-2024-31400 MEDIUM
Cybozu Garoon <5.15.0 - Info Disclosure
Jun 11, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-23304 HIGH
Cybozu KUNAI for Android 3.0.20-3.0.21 - Unauthenticated Denial of Service
Feb 06, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-46278 MEDIUM
Cybozu Remote Service 4.1.0-4.1.1 - Authenticated Uncontrolled Resource Consumption
Nov 01, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-27384 MEDIUM
Cybozu Garoon 5.15.0 - Authenticated Operation Restriction Bypass in MultiReport
May 23, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-27304 MEDIUM
Cybozu Garoon 4.6.0-5.9.2 - Authenticated Operation Restriction Bypass in Message and Bulletin
May 23, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-26595 MEDIUM
Cybozu Garoon 4.10.0-5.9.2 - Authenticated Denial of Service via Message
May 23, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-26838 MEDIUM
Cybozu Remote Service <3.1.2 - Path Traversal
Aug 03, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-44608 HIGH
Cybozu Remote Service 4.0.0-4.0.3 - Authenticated Denial of Service via Uncontrolled Resource Consumption
Dec 07, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-33311 MEDIUM
Cybozu Office 10.0.0-10.8.5 - Info Disclosure
Aug 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-33151 MEDIUM
Cybozu Office 10.0.0-10.8.5 - Cross-Site Scripting via Specific Parameters
Aug 18, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-32583 MEDIUM
Cybozu Office 10.0.0-10.8.5 - Privilege Escalation
Aug 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-32544 MEDIUM
Cybozu Office 10.0.0-10.8.5 - Privilege Escalation
Aug 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-32453 MEDIUM
Cybozu Office 10.0.0-10.8.5 - HTTP Header Injection
Aug 18, 2022
CVSS 6.5
EPSS 0.00
Products
garoon 198 office 71 remote_service_manager 22 mailwise 14 cybozu_office 7 dezie 6 kunai 6 cybozu_live 4 kintone 4 collaborex 2 cybozu_dezie 2 cybozu_remote_service 2 cybozu_ag 1 cybozu_dotsales 1 cybozu_garoon 1 cybozu_pocket 1 desktop 1 garoon_1 1 kunai_browser_for_remote_service 1 share360 1 share_360 1
Quick Filters
Critical CVEs With Exploits In CISA KEV