CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20797

Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.6%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://jvn.jp/en/jp/JVN52694228/index.html
https://kb.cybozu.support/article/37429
https://jvn.jp/en/jp/JVN52694228/index.html
https://kb.cybozu.support/article/37429

Products affected by CVE-2021-20797

Cybozu » Remote Service Manager » Version: 3.1.8

cpe:2.3:a:cybozu:remote_service_manager:3.1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20797

Products

Pricing

Contact Us