CVE-2018-0705
CRITICALCybozu Dezie 8.0.2-8.1.2 - Path Traversal via HTTP Requests
Title source: llmDescription
Directory traversal vulnerability in Cybozu Dezie 8.0.2 to 8.1.2 allows remote attackers to read arbitrary files via HTTP requests.
References (2)
Core 2
Core References
Third Party Advisory third-party-advisory
x_refsource_jvn
https://jvn.jp/en/jp/JVN16697622/index.html
Vendor Advisory x_refsource_misc
https://kb.cybozu.support/article/34089/
Scores
CVSS v3
9.1
EPSS
0.0065
EPSS Percentile
71.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
CWE
CWE-22
Status
published
Products (1)
cybozu/dezie
8.0.2 - 8.1.2
Published
Jan 09, 2019
Tracked Since
Feb 18, 2026