CVE-2021-20806

MEDIUM

Cybozu Remote Service <3.1.9 - Open Redirect

Title source: llm
STIX 2.1

Description

Open redirect vulnerability in Cybozu Remote Service 3.0.0 to 3.1.9 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

References (2)

Core 2
Core References
Third Party Advisory x_refsource_misc
https://jvn.jp/en/jp/JVN52694228/index.html
Vendor Advisory x_refsource_misc
https://kb.cybozu.support/article/37419

Scores

CVSS v3 6.1
EPSS 0.0027
EPSS Percentile 50.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-601
Status published
Products (1)
cybozu/remote_service_manager 3.0.0 - 3.1.9
Published Oct 13, 2021
Tracked Since Feb 18, 2026