Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu remote service manager 3.1.8 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-20795
Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote malicious user to hijack the authentication of administrators and unintended operations may be performed via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.4
CVSSv3
CVE-2021-20798
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.4
CVSSv3
CVE-2021-20799
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
6.5
CVSSv3
CVE-2021-20801
Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to conduct XML External Entity (XXE) attacks and obtain the information stored in the product via unspecified vectors. This issue occurs only when using Mozilla Firefox.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.3
CVSSv3
CVE-2021-20802
HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote malicious user to alter the information stored in the product.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.4
CVSSv3
CVE-2021-20803
Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to alter the data of the management screen.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
6.5
CVSSv3
CVE-2021-20804
Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to cause a denial of service (DoS) condition via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
6.5
CVSSv3
CVE-2021-20796
Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated malicious user to upload an arbitrary file via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
5.4
CVSSv3
CVE-2021-20797
Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated malicious user to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox.
Cybozu Remote Service Manager 3.1.8
5.4
CVSSv3
CVE-2021-20800
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »