Vulnerability Details CVE-2021-20628
Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.4 allows remote attackers to inject an arbitrary script via unspecified vectors. Note that this vulnerability occurs only when using Mozilla Firefox.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.4%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2021-20628
-
cpe:2.3:a:cybozu:office:10.0.0
-
cpe:2.3:a:cybozu:office:10.0.1
-
cpe:2.3:a:cybozu:office:10.0.2
-
cpe:2.3:a:cybozu:office:10.1.0
-
cpe:2.3:a:cybozu:office:10.1.2
-
cpe:2.3:a:cybozu:office:10.2.0
-
cpe:2.3:a:cybozu:office:10.3.0
-
cpe:2.3:a:cybozu:office:10.4.0
-
cpe:2.3:a:cybozu:office:10.5.0
-
cpe:2.3:a:cybozu:office:10.6.0
-
cpe:2.3:a:cybozu:office:10.6.1
-
cpe:2.3:a:cybozu:office:10.7.0
-
cpe:2.3:a:cybozu:office:10.8.0
-
cpe:2.3:a:cybozu:office:10.8.1
-
cpe:2.3:a:cybozu:office:10.8.2
-
cpe:2.3:a:cybozu:office:10.8.3
-
cpe:2.3:a:cybozu:office:10.8.4
-
cpe:2.3:a:mozilla:firefox:-