CVE-2018-0565

MEDIUM

Cybozu Office 10.0.0-10.8.0 - Cross-Site Scripting

Title source: llm
STIX 2.1

Description

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

Core 2
Core References
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN51737843/index.html
Third Party Advisory x_refsource_confirm
https://support.cybozu.com/ja-jp/article/10200

Scores

CVSS v3 6.1
EPSS 0.0024
EPSS Percentile 46.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
cybozu/office 10.0.0 - 10.8.0
Published Jun 26, 2018
Tracked Since Feb 18, 2026