cybozu
330 tracked vulnerabilities.
CVE-2016-4909
MEDIUM
Cybozu Garoon 3.0.0-4.2.2 - Cross-Site Request Forgery
Jun 09, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-4908
MEDIUM
Cybozu Garoon 3.0.0-4.2.2 - Authenticated Improper Access Control
Jun 09, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-4907
HIGH
Cybozu Garoon 3.0.0-4.2.2 - Cross-Site Request Forgery Token Exposure
Jun 09, 2017
CVSS 8.8
EPSS 0.00
CVE-2016-4906
MEDIUM
Cybozu Garoon 3.0.0-4.2.2 - Cross-Site Scripting via Messages Function
Jun 09, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-7815
MEDIUM
Cybozu Remote Service Manager 3.0.0-3.1.4 - Improper Certificate Validation
Apr 28, 2017
CVSS 4.2
EPSS 0.00
CVE-2016-1187
MEDIUM
Cybozu KUNAI for iPhone 2.0.3-3.1.5 & Android 2.1.2-3.0.4 - Sensitive Info Exposure via Unverified SSL Certs
Apr 21, 2017
CVSS 6.8
EPSS 0.00
CVE-2016-1186
MEDIUM
Kintone mobile for Android <1.0.6 - Info Disclosure
Apr 21, 2017
CVSS 5.9
EPSS 0.01
CVE-2016-4841
MEDIUM
Cybozu Mailwise < 5.4.0 - Email Header Injection
Apr 21, 2017
CVSS 4.3
EPSS 0.01
CVE-2016-1194
MEDIUM
Cybozu Garoon < 4.2.1 - Denial of Service
Apr 21, 2017
CVSS 6.5
EPSS 0.01
CVE-2016-4844
MEDIUM
Cybozu Mailwise < 5.4.0 - Clickjacking
Apr 20, 2017
CVSS 4.3
EPSS 0.01
CVE-2016-4843
MEDIUM
Cybozu Mailwise < 5.4.0 - Unauthorized Cookie Information Exposure
Apr 20, 2017
CVSS 6.5
EPSS 0.01
CVE-2016-4842
MEDIUM
Cybozu Mailwise < 5.4.0 - Unauthorized Email Read Receipt Exposure
Apr 20, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-1220
MEDIUM
Cybozu Garoon <4.2.2 - Info Disclosure
Apr 20, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-1218
HIGH
Cybozu Garoon <4.2.2 - SQL Injection
Apr 20, 2017
CVSS 8.8
EPSS 0.01
CVE-2016-1217
MEDIUM
Cybozu Garoon < 4.2.2 - Cross-Site Scripting in Check Available Times Function
Apr 20, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-1216
MEDIUM
Cybozu Garoon < 4.2.2 - Stored Cross-Site Scripting in New Appointment Function
Apr 20, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-1215
MEDIUM
Cybozu Garoon < 4.2.2 - Cross-Site Scripting in User Details Function
Apr 20, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-1214
MEDIUM
Cybozu Garoon < 4.2.2 - Cross-Site Scripting in Response Request Function
Apr 20, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-1213
MEDIUM
Cybozu Garoon < 4.2.1 - Open Redirect via Scheduler Function
Apr 20, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-1219
CRITICAL
Cybozu Garoon < 4.2.1 - Authentication Bypass via API
Apr 20, 2017
CVSS 9.8
EPSS 0.04
CVE-2016-4874
LOW
Cybozu Office 9.0.0-10.4.0 - Reflected File Download via Improper Access Control
Apr 17, 2017
CVSS 3.5
EPSS 0.00
CVE-2016-4873
MEDIUM
Cybozu Office 9.0.0-10.4.0 - Authenticated Unintended Operation Execution via Project Function
Apr 17, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-4872
MEDIUM
Cybozu Office 9.0.0-10.4.0 - Authenticated Unauthorized Project Name Exposure via Breadcrumb Trail
Apr 17, 2017
CVSS 4.3
EPSS 0.00
CVE-2016-4871
MEDIUM
Cybozu Office 9.0.0-10.4.0 - Denial of Service
Apr 17, 2017
CVSS 6.5
EPSS 0.02
CVE-2016-4870
MEDIUM
Cybozu Office 9.0.0-10.4.0 - Authenticated Cross-Site Scripting via Schedule Function
Apr 17, 2017
CVSS 5.4
EPSS 0.00
Products
garoon 198
office 71
remote_service_manager 22
mailwise 14
cybozu_office 7
dezie 6
kunai 6
cybozu_live 4
kintone 4
collaborex 2
cybozu_dezie 2
cybozu_remote_service 2
cybozu_ag 1
cybozu_dotsales 1
cybozu_garoon 1
cybozu_pocket 1
desktop 1
garoon_1 1
kunai_browser_for_remote_service 1
share360 1
share_360 1
Quick Filters