National Vulnerability Database

National Vulnerability Database

National Vulnerability

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:cybozu:dezie:8.0.1
There are 2 matching records.
Vuln ID Summary CVSS Severity

Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.

Published: November 23, 2014; 09:59:00 PM -05:00
    V2: 9.0 HIGH

Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Cancel button.

Published: December 13, 2013; 01:07:51 PM -05:00
    V2: 4.3 MEDIUM