CVE-2021-20801 vulnerability in Cybozu Products
Published on October 13, 2021
Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to conduct XML External Entity (XXE) attacks and obtain the information stored in the product via unspecified vectors. This issue occurs only when using Mozilla Firefox.
Products Associated with CVE-2021-20801
stack.watch emails you whenever new vulnerabilities are published in Cybozu Remote Service Manager or Cybozu Remote Service. Just hit a watch button to start following.
Affected Versions
Cybozu, Inc. Cybozu Remote Service Version 3.1.8 to 3.1.9 is affected by CVE-2021-20801Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.