GCVE - cpe:2.3:a:cybozu:dezie:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cybozu:dezie:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Cybozu (`6c3c6c19-80d3-5353-ad46-e08ec1369448`)
Product	Dezie (`1cc34ec5-0333-5c50-aac8-6bd983a4dbbe`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-0705`	vulnerable	2026-06-03 14:37:51.560957	Details available Directory traversal vulnerability in Cybozu Dezie 8.0.2 to 8.1.2 allows remote attackers to read arbitrary files via HTTP requests. Published: 2019-01-09T22:00:00.000Z Updated: 2024-08-05T03:35:48.908Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN16697622/index.html https://kb.cybozu.support/article/34089/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-5314`	vulnerable	2026-06-03 14:34:06.025027	Details available Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages. Published: 2014-11-24T02:00:00.000Z Updated: 2024-08-06T11:41:48.287Z Open on db.gcve.eu Reference links http://secunia.com/advisories/62248 http://jvn.jp/en/jp/JVN14691234/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000130 https://cs.cybozu.co.jp/2014/1110-2.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6005`	vulnerable	2026-06-03 14:33:24.652531	Details available Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Cancel button. Published: 2013-12-13T15:00:00.000Z Updated: 2024-08-06T17:29:42.582Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/89577 http://osvdb.org/100819 http://jvn.jp/en/jp/JVN21336955/index.html http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000118.html http://cs.cybozu.co.jp/information/20131209up11.php	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1334`	vulnerable	2026-06-03 14:31:00.688621	Details available Cross-site scripting (XSS) vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the mail system." Published: 2011-06-29T17:00:00.000Z Updated: 2024-09-17T01:16:50.241Z Open on db.gcve.eu Reference links http://cybozu.co.jp/products/dl/notice/detail/0019.html http://www.osvdb.org/73317 http://www.securityfocus.com/bid/48446 http://jvn.jp/en/jp/JVN54074460/index.html http://secunia.com/advisories/45043	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.