CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20795

Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to hijack the authentication of administrators and unintended operations may be performed via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://jvn.jp/en/jp/JVN52694228/index.html
https://kb.cybozu.support/article/37422
https://jvn.jp/en/jp/JVN52694228/index.html
https://kb.cybozu.support/article/37422

Products affected by CVE-2021-20795

Cybozu » Remote Service Manager » Version: 3.1.8

cpe:2.3:a:cybozu:remote_service_manager:3.1.8
Cybozu » Remote Service Manager » Version: 3.1.9

cpe:2.3:a:cybozu:remote_service_manager:3.1.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20795

Products

Pricing

Contact Us