GCVE - cpe:2.3:a:cybozu:remote_service_manager:3.1.8:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cybozu:remote_service_manager:3.1.8:*:*:*:*:*:*:*

part: a version: 3.1.8 update: *

Vendor	Cybozu (`6c3c6c19-80d3-5353-ad46-e08ec1369448`)
Product	Remote Service Manager (`f089b882-8996-5ec3-a884-1626f0305453`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-20804`	vulnerable	2026-06-03 14:43:43.236826	Details available Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to cause a denial of service (DoS) condition via unspecified vectors. Published: 2021-10-13T08:31:01.000Z Updated: 2024-08-03T17:53:22.817Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37426	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20803`	vulnerable	2026-06-03 14:43:43.236538	Details available Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to alter the data of the management screen. Published: 2021-10-13T08:31:00.000Z Updated: 2024-08-03T17:53:22.318Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37421	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20802`	vulnerable	2026-06-03 14:43:43.236220	Details available HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to alter the information stored in the product. Published: 2021-10-13T08:30:58.000Z Updated: 2024-08-03T17:53:22.625Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37428	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20801`	vulnerable	2026-06-03 14:43:43.235785	Details available Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to conduct XML External Entity (XXE) attacks and obtain the information stored in the product via unspecified vectors. This issue occurs only when using Mozilla Firefox. Published: 2021-10-13T08:30:57.000Z Updated: 2024-08-03T17:53:22.673Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37423	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20800`	vulnerable	2026-06-03 14:43:43.235499	Details available Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. Published: 2021-10-13T08:30:55.000Z Updated: 2024-08-03T17:53:22.451Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37420	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20799`	vulnerable	2026-06-03 14:43:43.235212	Details available Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. Published: 2021-10-13T08:30:53.000Z Updated: 2024-08-03T17:53:22.605Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37425	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20798`	vulnerable	2026-06-03 14:43:43.234903	Details available Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. Published: 2021-10-13T08:30:52.000Z Updated: 2024-08-03T17:53:22.814Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37424	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20797`	vulnerable	2026-06-03 14:43:43.234612	Details available Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox. Published: 2021-10-13T08:30:50.000Z Updated: 2024-08-03T17:53:23.130Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37429	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20796`	vulnerable	2026-06-03 14:43:43.234281	Details available Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to upload an arbitrary file via unspecified vectors. Published: 2021-10-13T08:30:49.000Z Updated: 2024-08-03T17:53:22.583Z Open on db.gcve.eu Reference links https://jvn.jp/en/jp/JVN52694228/index.html https://kb.cybozu.support/article/37427	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-20795`	vulnerable	2026-06-03 14:43:43.233140	Details available Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to hijack the authentication of administrators and unintended operations may be performed via unspecified vectors. Published: 2021-10-13T08:30:47.000Z Updated: 2024-08-03T17:53:23.059Z Open on db.gcve.eu Reference links https://kb.cybozu.support/article/37422 https://jvn.jp/en/jp/JVN52694228/index.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Cybozu Remote Service Manager 3.1.8

PURL mappings

Vulnerability references

Contribute