CVE-2021-20797

Summary

Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Remote Service3.1.8affected

Weaknesses

  • Cross-site script inclusion vulnerability

ADP Enrichment

CVE Program Container

Additional References

References