CVE-2021-20805 vulnerability in Cybozu Products
Published on October 13, 2021
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Products Associated with CVE-2021-20805
stack.watch emails you whenever new vulnerabilities are published in Cybozu Remote Service Manager or Cybozu Remote Service. Just hit a watch button to start following.
Affected Versions
Cybozu, Inc. Cybozu Remote Service Version 3.1.7 to 3.1.9 is affected by CVE-2021-20805Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.