Cybozu Remote Service
Approved changes feed: RSS · Atom
cpe:2.3:a:cybozu,_inc.:cybozu_remote_service:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Cybozu, Inc. (52951fda-397f-5edb-b732-c853ee4ff937) |
|---|---|
| Product | Cybozu Remote Service (5ae8ae5f-2b27-5c4c-b859-765b6cc5b555) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-46278 |
vulnerable | 2026-06-08 06:12:44.525003 |
Details available
Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.1.0 to 4.1.1 allows a remote authenticated attacker to consume huge storage space or cause significantly delayed communication.
Published: 2023-10-31T23:01:20.135Z
Updated: 2024-09-05T19:48:06.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-44608 |
vulnerable | 2026-06-08 05:49:35.693864 |
Details available
Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.0.0 to 4.0.3 allows a remote authenticated attacker to consume huge storage space, which may result in a denial-of-service (DoS) condition.
Published: 2022-12-07T00:00:00.000Z
Updated: 2025-04-23T13:56:53.043Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-26838 |
vulnerable | 2026-06-08 05:41:53.451140 |
Details available
Path traversal vulnerability in Importing Mobile Device Data of Cybozu Remote Service 3.1.2 allows a remote authenticated attacker to cause a denial-of-service (DoS) condition.
Published: 2023-08-03T13:16:16.712Z
Updated: 2024-10-17T14:14:01.224Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20807 |
vulnerable | 2026-06-08 05:29:10.579603 |
Details available
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.0.0 to 3.1.9 allows a remote attacker to inject an arbitrary script via unspecified vectors.
Published: 2021-10-13T08:31:06.000Z
Updated: 2024-08-03T17:53:22.642Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20806 |
vulnerable | 2026-06-08 05:29:10.579280 |
Details available
Open redirect vulnerability in Cybozu Remote Service 3.0.0 to 3.1.9 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Published: 2021-10-13T08:31:04.000Z
Updated: 2024-08-03T17:53:22.509Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20805 |
vulnerable | 2026-06-08 05:29:10.575536 |
Details available
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Published: 2021-10-13T08:31:03.000Z
Updated: 2024-08-03T17:53:22.671Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20804 |
vulnerable | 2026-06-08 05:29:10.575237 |
Details available
Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to cause a denial of service (DoS) condition via unspecified vectors.
Published: 2021-10-13T08:31:01.000Z
Updated: 2024-08-03T17:53:22.817Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20803 |
vulnerable | 2026-06-08 05:29:10.574941 |
Details available
Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to alter the data of the management screen.
Published: 2021-10-13T08:31:00.000Z
Updated: 2024-08-03T17:53:22.318Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20802 |
vulnerable | 2026-06-08 05:29:10.574642 |
Details available
HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to alter the information stored in the product.
Published: 2021-10-13T08:30:58.000Z
Updated: 2024-08-03T17:53:22.625Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20801 |
vulnerable | 2026-06-08 05:29:10.574336 |
Details available
Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to conduct XML External Entity (XXE) attacks and obtain the information stored in the product via unspecified vectors. This issue occurs only when using Mozilla Firefox.
Published: 2021-10-13T08:30:57.000Z
Updated: 2024-08-03T17:53:22.673Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20800 |
vulnerable | 2026-06-08 05:29:10.574039 |
Details available
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Published: 2021-10-13T08:30:55.000Z
Updated: 2024-08-03T17:53:22.451Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20799 |
vulnerable | 2026-06-08 05:29:10.573746 |
Details available
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Published: 2021-10-13T08:30:53.000Z
Updated: 2024-08-03T17:53:22.605Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20798 |
vulnerable | 2026-06-08 05:29:10.573447 |
Details available
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Published: 2021-10-13T08:30:52.000Z
Updated: 2024-08-03T17:53:22.814Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20797 |
vulnerable | 2026-06-08 05:29:10.573129 |
Details available
Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox.
Published: 2021-10-13T08:30:50.000Z
Updated: 2024-08-03T17:53:23.130Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20796 |
vulnerable | 2026-06-08 05:29:10.572810 |
Details available
Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to upload an arbitrary file via unspecified vectors.
Published: 2021-10-13T08:30:49.000Z
Updated: 2024-08-03T17:53:22.583Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20795 |
vulnerable | 2026-06-08 05:29:10.570678 |
Details available
Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to hijack the authentication of administrators and unintended operations may be performed via unspecified vectors.
Published: 2021-10-13T08:30:47.000Z
Updated: 2024-08-03T17:53:23.059Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-16172 |
vulnerable | 2026-06-08 05:11:04.329951 |
Details available
Improper countermeasure against clickjacking attack in client certificates management screen was discovered in Cybozu Remote Service 3.0.0 to 3.1.8, that allows remote attackers to trick a user to delete the registered client certificate.
Published: 2019-01-09T22:00:00.000Z
Updated: 2024-08-05T10:17:38.320Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-16171 |
vulnerable | 2026-06-08 05:11:04.329563 |
Details available
Directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 allows remote attackers to execute Java code file on the server via unspecified vectors.
Published: 2019-01-09T22:00:00.000Z
Updated: 2024-08-05T10:17:38.199Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-16170 |
vulnerable | 2026-06-08 05:11:04.329115 |
Details available
Directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 for Windows allows remote authenticated attackers to read arbitrary files via unspecified vectors.
Published: 2019-01-09T22:00:00.000Z
Updated: 2024-08-05T10:17:38.299Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-16169 |
vulnerable | 2026-06-08 05:11:04.327509 |
Details available
Cybozu Remote Service 3.0.0 to 3.1.0 allows remote authenticated attackers to upload and execute Java code file on the server via unspecified vectors.
Published: 2019-01-09T22:00:00.000Z
Updated: 2024-08-05T10:17:38.319Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.