GCVE - cpe:2.3:a:cybozu:office:10.5.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cybozu:office:10.5.0:*:*:*:*:*:*:*

part: a version: 10.5.0 update: *

Vendor	Cybozu (`6c3c6c19-80d3-5353-ad46-e08ec1369448`)
Product	Office (`3e47509a-1a03-5002-929e-9c2c66c074a0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-2116`	vulnerable	2026-06-03 14:37:06.691261	Details available Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to bypass access restriction to delete "customapp" templates via unspecified vectors. Published: 2017-04-28T16:00:00.000Z Updated: 2024-08-05T13:39:32.279Z Open on db.gcve.eu Reference links http://jvn.jp/en/jp/JVN17535578/index.html http://www.securityfocus.com/bid/97717 https://support.cybozu.com/ja-jp/article/9736	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-2115`	vulnerable	2026-06-03 14:37:06.690677	Details available Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to bypass access restriction to obtain "customapp" information via unspecified vectors. Published: 2017-04-28T16:00:00.000Z Updated: 2024-08-05T13:39:32.370Z Open on db.gcve.eu Reference links http://jvn.jp/en/jp/JVN17535578/index.html https://support.cybozu.com/ja-jp/article/9737 http://www.securityfocus.com/bid/97717	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-2114`	vulnerable	2026-06-03 14:37:06.688148	Details available Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2017-04-28T16:00:00.000Z Updated: 2024-08-05T13:39:32.252Z Open on db.gcve.eu Reference links http://jvn.jp/en/jp/JVN17535578/index.html http://www.securityfocus.com/bid/97717 https://support.cybozu.com/ja-jp/article/9738	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-10857`	vulnerable	2026-06-03 14:36:27.246728	Details available Cybozu Office 10.0.0 to 10.6.1 allows authenticated attackers to bypass access restriction to perform arbitrary actions via "Cabinet" function. Published: 2017-10-12T14:00:00.000Z Updated: 2024-08-05T17:50:12.589Z Open on db.gcve.eu Reference links https://support.cybozu.com/ja-jp/article/9811 http://jvn.jp/en/jp/JVN14658424/index.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.