CVE-2015-8489

MEDIUM

Cybozu Office <10.3.0 - DoS

Title source: llm

Description

customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to cause a denial of service (excessive database locking) via a crafted CSV file, a different vulnerability than CVE-2016-1153.

References (3)

Scores

CVSS v3 6.5
EPSS 0.0058
EPSS Percentile 68.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE
CWE-20
Status draft

Affected Products (8)

cybozu/office
cybozu/office
cybozu/office
cybozu/office
cybozu/office
cybozu/office
cybozu/office
cybozu/office

Timeline

Published Feb 17, 2016
Tracked Since Feb 18, 2026