Search

Find a vulnerability

Search criteria

    14 vulnerabilities found for cybozu_office by cybozu

    CVE-2013-3656 (GCVE-0-2013-3656)

    Vulnerability from nvd – Published: 2013-07-18 01:00 – Updated: 2024-08-06 16:14
    VLAI
    Summary
    Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://jvn.jp/en/jp/JVN19491840/index.html third-party-advisoryx_refsource_JVN
    http://products.cybozu.co.jp/office/ver9/download… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069 third-party-advisoryx_refsource_JVNDB
    Date Public
    2013-07-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:14:56.583Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "JVN#19491840",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
              },
              {
                "name": "cybozuoffice-cve20133656-spoofing(85894)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
              },
              {
                "name": "JVNDB-2013-000069",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-07-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-11-28T15:57:01.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "name": "JVN#19491840",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
            },
            {
              "name": "cybozuoffice-cve20133656-spoofing(85894)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
            },
            {
              "name": "JVNDB-2013-000069",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2013-3656",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "JVN#19491840",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
                },
                {
                  "name": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html",
                  "refsource": "CONFIRM",
                  "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
                },
                {
                  "name": "cybozuoffice-cve20133656-spoofing(85894)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
                },
                {
                  "name": "JVNDB-2013-000069",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2013-3656",
        "datePublished": "2013-07-18T01:00:00.000Z",
        "dateReserved": "2013-05-22T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:14:56.583Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-3269 (GCVE-0-2013-3269)

    Vulnerability from nvd – Published: 2013-04-25 10:00 – Updated: 2024-08-06 16:07
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:07:36.653Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
              },
              {
                "name": "JVN#06251813",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
              },
              {
                "name": "cybozuoffice-cve20133269-csrf(83812)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
              },
              {
                "name": "JVNDB-2013-000034",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
            },
            {
              "name": "JVN#06251813",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
            },
            {
              "name": "cybozuoffice-cve20133269-csrf(83812)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
            },
            {
              "name": "JVNDB-2013-000034",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-3269",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cs.cybozu.co.jp/information/20130415up11.php",
                  "refsource": "CONFIRM",
                  "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
                },
                {
                  "name": "JVN#06251813",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
                },
                {
                  "name": "cybozuoffice-cve20133269-csrf(83812)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
                },
                {
                  "name": "http://jvn.jp/en/jp/JVN06251813/374951/index.html",
                  "refsource": "CONFIRM",
                  "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
                },
                {
                  "name": "JVNDB-2013-000034",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-3269",
        "datePublished": "2013-04-25T10:00:00.000Z",
        "dateReserved": "2013-04-25T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:07:36.653Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-2305 (GCVE-0-2013-2305)

    Vulnerability from nvd – Published: 2013-04-25 10:00 – Updated: 2024-09-16 16:18
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://cs.cybozu.co.jp/information/20130415up10.php x_refsource_CONFIRM
    http://jvn.jp/en/jp/JVN06251813/index.html third-party-advisoryx_refsource_JVN
    http://jvn.jp/en/jp/JVN06251813/374951/index.html x_refsource_CONFIRM
    http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034 third-party-advisoryx_refsource_JVNDB
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:36:45.709Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
              },
              {
                "name": "JVN#06251813",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
              },
              {
                "name": "JVNDB-2013-000034",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2013-04-25T10:00:00.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
            },
            {
              "name": "JVN#06251813",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
            },
            {
              "name": "JVNDB-2013-000034",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2013-2305",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cs.cybozu.co.jp/information/20130415up10.php",
                  "refsource": "CONFIRM",
                  "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
                },
                {
                  "name": "JVN#06251813",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
                },
                {
                  "name": "http://jvn.jp/en/jp/JVN06251813/374951/index.html",
                  "refsource": "CONFIRM",
                  "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
                },
                {
                  "name": "JVNDB-2013-000034",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2013-2305",
        "datePublished": "2013-04-25T10:00:00.000Z",
        "dateReserved": "2013-03-04T00:00:00.000Z",
        "dateUpdated": "2024-09-16T16:18:26.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-2029 (GCVE-0-2010-2029)

    Vulnerability from nvd – Published: 2010-05-24 19:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39508 third-party-advisoryx_refsource_SECUNIA
    http://cybozu.co.jp/products/dl/notice/detail/0034.html x_refsource_CONFIRM
    http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-0… third-party-advisoryx_refsource_JVNDB
    http://www.osvdb.org/63933 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.ipa.go.jp/security/english/vuln/201004… x_refsource_MISC
    http://jvn.jp/en/jp/JVN87730223/index.html third-party-advisoryx_refsource_JVN
    Date Public
    2010-04-19 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.381Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39508",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39508"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
              },
              {
                "name": "JVNDB-2010-000016",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
              },
              {
                "name": "63933",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63933"
              },
              {
                "name": "cybozu-office-dotsales-sec-bypass(57976)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
              },
              {
                "name": "JVN#87730223",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user\u0027s cell phone."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39508",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39508"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
            },
            {
              "name": "JVNDB-2010-000016",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
            },
            {
              "name": "63933",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63933"
            },
            {
              "name": "cybozu-office-dotsales-sec-bypass(57976)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
            },
            {
              "name": "JVN#87730223",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-2029",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user\u0027s cell phone."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39508",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39508"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0034.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
                },
                {
                  "name": "JVNDB-2010-000016",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
                },
                {
                  "name": "63933",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63933"
                },
                {
                  "name": "cybozu-office-dotsales-sec-bypass(57976)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
                },
                {
                  "name": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html",
                  "refsource": "MISC",
                  "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
                },
                {
                  "name": "JVN#87730223",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-2029",
        "datePublished": "2010-05-24T19:00:00.000Z",
        "dateReserved": "2010-05-24T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.381Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2008-6744 (GCVE-0-2008-6744)

    Vulnerability from nvd – Published: 2009-04-23 17:00 – Updated: 2024-08-07 11:42
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://cybozu.co.jp/products/dl/notice/detail/0016.html x_refsource_CONFIRM
    http://cybozu.co.jp/products/dl/notice/detail/0018.html x_refsource_CONFIRM
    http://jvn.jp/en/jp/JVN18405927/index.html third-party-advisoryx_refsource_JVN
    http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-0… third-party-advisoryx_refsource_JVNDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/30882 third-party-advisoryx_refsource_SECUNIA
    http://osvdb.org/46575 vdb-entryx_refsource_OSVDB
    Date Public
    2008-06-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T11:42:00.049Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
              },
              {
                "name": "JVN#18405927",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
              },
              {
                "name": "JVNDB-2008-000033",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
              },
              {
                "name": "garoon-unspecified-csrf(43438)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
              },
              {
                "name": "30882",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/30882"
              },
              {
                "name": "46575",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/46575"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-06-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
            },
            {
              "name": "JVN#18405927",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
            },
            {
              "name": "JVNDB-2008-000033",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
            },
            {
              "name": "garoon-unspecified-csrf(43438)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
            },
            {
              "name": "30882",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/30882"
            },
            {
              "name": "46575",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/46575"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-6744",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0016.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0018.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
                },
                {
                  "name": "JVN#18405927",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
                },
                {
                  "name": "JVNDB-2008-000033",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
                },
                {
                  "name": "garoon-unspecified-csrf(43438)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
                },
                {
                  "name": "30882",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/30882"
                },
                {
                  "name": "46575",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/46575"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-6744",
        "datePublished": "2009-04-23T17:00:00.000Z",
        "dateReserved": "2009-04-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T11:42:00.049Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-4490 (GCVE-0-2006-4490)

    Vulnerability from nvd – Published: 2006-08-31 22:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/28261 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/21618 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/21623 third-party-advisoryx_refsource_SECUNIA
    http://jvn.jp/jp/JVN%2390420168/index.html third-party-advisoryx_refsource_JVN
    http://cybozu.co.jp/products/dl/notice_060825/ x_refsource_CONFIRM
    http://www.osvdb.org/28262 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1016759 vdb-entryx_refsource_SECTRACK
    http://vuln.sg/cybozu-en.html x_refsource_MISC
    Date Public
    2006-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:47.296Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "28261",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28261"
              },
              {
                "name": "21618",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21618"
              },
              {
                "name": "21623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21623"
              },
              {
                "name": "JVN#90420168",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice_060825/"
              },
              {
                "name": "28262",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28262"
              },
              {
                "name": "cybozu-ag-s360-directory-traversal(28591)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
              },
              {
                "name": "1016759",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1016759"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://vuln.sg/cybozu-en.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "28261",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28261"
            },
            {
              "name": "21618",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21618"
            },
            {
              "name": "21623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21623"
            },
            {
              "name": "JVN#90420168",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice_060825/"
            },
            {
              "name": "28262",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28262"
            },
            {
              "name": "cybozu-ag-s360-directory-traversal(28591)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
            },
            {
              "name": "1016759",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1016759"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://vuln.sg/cybozu-en.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4490",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "28261",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28261"
                },
                {
                  "name": "21618",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21618"
                },
                {
                  "name": "21623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21623"
                },
                {
                  "name": "JVN#90420168",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice_060825/",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice_060825/"
                },
                {
                  "name": "28262",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28262"
                },
                {
                  "name": "cybozu-ag-s360-directory-traversal(28591)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
                },
                {
                  "name": "1016759",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1016759"
                },
                {
                  "name": "http://vuln.sg/cybozu-en.html",
                  "refsource": "MISC",
                  "url": "http://vuln.sg/cybozu-en.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4490",
        "datePublished": "2006-08-31T22:00:00.000Z",
        "dateReserved": "2006-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:47.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-4492 (GCVE-0-2006-4492)

    Vulnerability from nvd – Published: 2006-08-31 22:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/21623 third-party-advisoryx_refsource_SECUNIA
    http://jvn.jp/jp/JVN%2331125599/index.html third-party-advisoryx_refsource_JVN
    http://www.osvdb.org/28263 vdb-entryx_refsource_OSVDB
    Date Public
    2006-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:46.770Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "21623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21623"
              },
              {
                "name": "JVN#31125599",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
              },
              {
                "name": "28263",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28263"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2006-12-11T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "21623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21623"
            },
            {
              "name": "JVN#31125599",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
            },
            {
              "name": "28263",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28263"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4492",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "21623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21623"
                },
                {
                  "name": "JVN#31125599",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
                },
                {
                  "name": "28263",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28263"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4492",
        "datePublished": "2006-08-31T22:00:00.000Z",
        "dateReserved": "2006-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:46.770Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-3656 (GCVE-0-2013-3656)

    Vulnerability from cvelistv5 – Published: 2013-07-18 01:00 – Updated: 2024-08-06 16:14
    VLAI
    Summary
    Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://jvn.jp/en/jp/JVN19491840/index.html third-party-advisoryx_refsource_JVN
    http://products.cybozu.co.jp/office/ver9/download… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069 third-party-advisoryx_refsource_JVNDB
    Date Public
    2013-07-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:14:56.583Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "JVN#19491840",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
              },
              {
                "name": "cybozuoffice-cve20133656-spoofing(85894)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
              },
              {
                "name": "JVNDB-2013-000069",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-07-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-11-28T15:57:01.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "name": "JVN#19491840",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
            },
            {
              "name": "cybozuoffice-cve20133656-spoofing(85894)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
            },
            {
              "name": "JVNDB-2013-000069",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2013-3656",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "JVN#19491840",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN19491840/index.html"
                },
                {
                  "name": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html",
                  "refsource": "CONFIRM",
                  "url": "http://products.cybozu.co.jp/office/ver9/download/update/fix910.html"
                },
                {
                  "name": "cybozuoffice-cve20133656-spoofing(85894)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85894"
                },
                {
                  "name": "JVNDB-2013-000069",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000069"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2013-3656",
        "datePublished": "2013-07-18T01:00:00.000Z",
        "dateReserved": "2013-05-22T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:14:56.583Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-2305 (GCVE-0-2013-2305)

    Vulnerability from cvelistv5 – Published: 2013-04-25 10:00 – Updated: 2024-09-16 16:18
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://cs.cybozu.co.jp/information/20130415up10.php x_refsource_CONFIRM
    http://jvn.jp/en/jp/JVN06251813/index.html third-party-advisoryx_refsource_JVN
    http://jvn.jp/en/jp/JVN06251813/374951/index.html x_refsource_CONFIRM
    http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034 third-party-advisoryx_refsource_JVNDB
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:36:45.709Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
              },
              {
                "name": "JVN#06251813",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
              },
              {
                "name": "JVNDB-2013-000034",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2013-04-25T10:00:00.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
            },
            {
              "name": "JVN#06251813",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
            },
            {
              "name": "JVNDB-2013-000034",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2013-2305",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0, Cybozu Dezie before 8.0.7, and Cybozu Mailwise before 5.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cs.cybozu.co.jp/information/20130415up10.php",
                  "refsource": "CONFIRM",
                  "url": "http://cs.cybozu.co.jp/information/20130415up10.php"
                },
                {
                  "name": "JVN#06251813",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
                },
                {
                  "name": "http://jvn.jp/en/jp/JVN06251813/374951/index.html",
                  "refsource": "CONFIRM",
                  "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
                },
                {
                  "name": "JVNDB-2013-000034",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2013-2305",
        "datePublished": "2013-04-25T10:00:00.000Z",
        "dateReserved": "2013-03-04T00:00:00.000Z",
        "dateUpdated": "2024-09-16T16:18:26.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-3269 (GCVE-0-2013-3269)

    Vulnerability from cvelistv5 – Published: 2013-04-25 10:00 – Updated: 2024-08-06 16:07
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:07:36.653Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
              },
              {
                "name": "JVN#06251813",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
              },
              {
                "name": "cybozuoffice-cve20133269-csrf(83812)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
              },
              {
                "name": "JVNDB-2013-000034",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
            },
            {
              "name": "JVN#06251813",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
            },
            {
              "name": "cybozuoffice-cve20133269-csrf(83812)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
            },
            {
              "name": "JVNDB-2013-000034",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-3269",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mobile passwords, a different vulnerability than CVE-2013-2305."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cs.cybozu.co.jp/information/20130415up11.php",
                  "refsource": "CONFIRM",
                  "url": "http://cs.cybozu.co.jp/information/20130415up11.php"
                },
                {
                  "name": "JVN#06251813",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN06251813/index.html"
                },
                {
                  "name": "cybozuoffice-cve20133269-csrf(83812)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/83812"
                },
                {
                  "name": "http://jvn.jp/en/jp/JVN06251813/374951/index.html",
                  "refsource": "CONFIRM",
                  "url": "http://jvn.jp/en/jp/JVN06251813/374951/index.html"
                },
                {
                  "name": "JVNDB-2013-000034",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000034"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-3269",
        "datePublished": "2013-04-25T10:00:00.000Z",
        "dateReserved": "2013-04-25T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:07:36.653Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-2029 (GCVE-0-2010-2029)

    Vulnerability from cvelistv5 – Published: 2010-05-24 19:00 – Updated: 2024-08-07 02:17
    VLAI
    Summary
    Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/39508 third-party-advisoryx_refsource_SECUNIA
    http://cybozu.co.jp/products/dl/notice/detail/0034.html x_refsource_CONFIRM
    http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-0… third-party-advisoryx_refsource_JVNDB
    http://www.osvdb.org/63933 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.ipa.go.jp/security/english/vuln/201004… x_refsource_MISC
    http://jvn.jp/en/jp/JVN87730223/index.html third-party-advisoryx_refsource_JVN
    Date Public
    2010-04-19 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T02:17:14.381Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "39508",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/39508"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
              },
              {
                "name": "JVNDB-2010-000016",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
              },
              {
                "name": "63933",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/63933"
              },
              {
                "name": "cybozu-office-dotsales-sec-bypass(57976)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
              },
              {
                "name": "JVN#87730223",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2010-04-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user\u0027s cell phone."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "39508",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/39508"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
            },
            {
              "name": "JVNDB-2010-000016",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
            },
            {
              "name": "63933",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/63933"
            },
            {
              "name": "cybozu-office-dotsales-sec-bypass(57976)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
            },
            {
              "name": "JVN#87730223",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-2029",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user\u0027s cell phone."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "39508",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/39508"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0034.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0034.html"
                },
                {
                  "name": "JVNDB-2010-000016",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html"
                },
                {
                  "name": "63933",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/63933"
                },
                {
                  "name": "cybozu-office-dotsales-sec-bypass(57976)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/57976"
                },
                {
                  "name": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html",
                  "refsource": "MISC",
                  "url": "http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html"
                },
                {
                  "name": "JVN#87730223",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN87730223/index.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-2029",
        "datePublished": "2010-05-24T19:00:00.000Z",
        "dateReserved": "2010-05-24T00:00:00.000Z",
        "dateUpdated": "2024-08-07T02:17:14.381Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2008-6744 (GCVE-0-2008-6744)

    Vulnerability from cvelistv5 – Published: 2009-04-23 17:00 – Updated: 2024-08-07 11:42
    VLAI
    Summary
    Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://cybozu.co.jp/products/dl/notice/detail/0016.html x_refsource_CONFIRM
    http://cybozu.co.jp/products/dl/notice/detail/0018.html x_refsource_CONFIRM
    http://jvn.jp/en/jp/JVN18405927/index.html third-party-advisoryx_refsource_JVN
    http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-0… third-party-advisoryx_refsource_JVNDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/30882 third-party-advisoryx_refsource_SECUNIA
    http://osvdb.org/46575 vdb-entryx_refsource_OSVDB
    Date Public
    2008-06-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T11:42:00.049Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
              },
              {
                "name": "JVN#18405927",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
              },
              {
                "name": "JVNDB-2008-000033",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
              },
              {
                "name": "garoon-unspecified-csrf(43438)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
              },
              {
                "name": "30882",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/30882"
              },
              {
                "name": "46575",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/46575"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-06-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
            },
            {
              "name": "JVN#18405927",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
            },
            {
              "name": "JVNDB-2008-000033",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
            },
            {
              "name": "garoon-unspecified-csrf(43438)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
            },
            {
              "name": "30882",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/30882"
            },
            {
              "name": "46575",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/46575"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-6744",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie before 6.0(1.0), and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0016.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0016.html"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice/detail/0018.html",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice/detail/0018.html"
                },
                {
                  "name": "JVN#18405927",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN18405927/index.html"
                },
                {
                  "name": "JVNDB-2008-000033",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html"
                },
                {
                  "name": "garoon-unspecified-csrf(43438)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43438"
                },
                {
                  "name": "30882",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/30882"
                },
                {
                  "name": "46575",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/46575"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-6744",
        "datePublished": "2009-04-23T17:00:00.000Z",
        "dateReserved": "2009-04-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T11:42:00.049Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-4490 (GCVE-0-2006-4490)

    Vulnerability from cvelistv5 – Published: 2006-08-31 22:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/28261 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/21618 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/21623 third-party-advisoryx_refsource_SECUNIA
    http://jvn.jp/jp/JVN%2390420168/index.html third-party-advisoryx_refsource_JVN
    http://cybozu.co.jp/products/dl/notice_060825/ x_refsource_CONFIRM
    http://www.osvdb.org/28262 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1016759 vdb-entryx_refsource_SECTRACK
    http://vuln.sg/cybozu-en.html x_refsource_MISC
    Date Public
    2006-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:47.296Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "28261",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28261"
              },
              {
                "name": "21618",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21618"
              },
              {
                "name": "21623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21623"
              },
              {
                "name": "JVN#90420168",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cybozu.co.jp/products/dl/notice_060825/"
              },
              {
                "name": "28262",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28262"
              },
              {
                "name": "cybozu-ag-s360-directory-traversal(28591)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
              },
              {
                "name": "1016759",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1016759"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://vuln.sg/cybozu-en.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "28261",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28261"
            },
            {
              "name": "21618",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21618"
            },
            {
              "name": "21623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21623"
            },
            {
              "name": "JVN#90420168",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cybozu.co.jp/products/dl/notice_060825/"
            },
            {
              "name": "28262",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28262"
            },
            {
              "name": "cybozu-ag-s360-directory-traversal(28591)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
            },
            {
              "name": "1016759",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1016759"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://vuln.sg/cybozu-en.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4490",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple directory traversal vulnerabilities in Cybozu Office before 6.6 Build 1.3 and Share 360 before 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s360.exe."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "28261",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28261"
                },
                {
                  "name": "21618",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21618"
                },
                {
                  "name": "21623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21623"
                },
                {
                  "name": "JVN#90420168",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2390420168/index.html"
                },
                {
                  "name": "http://cybozu.co.jp/products/dl/notice_060825/",
                  "refsource": "CONFIRM",
                  "url": "http://cybozu.co.jp/products/dl/notice_060825/"
                },
                {
                  "name": "28262",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28262"
                },
                {
                  "name": "cybozu-ag-s360-directory-traversal(28591)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28591"
                },
                {
                  "name": "1016759",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1016759"
                },
                {
                  "name": "http://vuln.sg/cybozu-en.html",
                  "refsource": "MISC",
                  "url": "http://vuln.sg/cybozu-en.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4490",
        "datePublished": "2006-08-31T22:00:00.000Z",
        "dateReserved": "2006-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:47.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-4492 (GCVE-0-2006-4492)

    Vulnerability from cvelistv5 – Published: 2006-08-31 22:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/21623 third-party-advisoryx_refsource_SECUNIA
    http://jvn.jp/jp/JVN%2331125599/index.html third-party-advisoryx_refsource_JVN
    http://www.osvdb.org/28263 vdb-entryx_refsource_OSVDB
    Date Public
    2006-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:46.770Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "21623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21623"
              },
              {
                "name": "JVN#31125599",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
              },
              {
                "name": "28263",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/28263"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2006-12-11T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "21623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21623"
            },
            {
              "name": "JVN#31125599",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
            },
            {
              "name": "28263",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/28263"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4492",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "21623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21623"
                },
                {
                  "name": "JVN#31125599",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2331125599/index.html"
                },
                {
                  "name": "28263",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/28263"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4492",
        "datePublished": "2006-08-31T22:00:00.000Z",
        "dateReserved": "2006-08-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:46.770Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }