Cybozu Mailwise 5.0.1

CPE Details

Cybozu Mailwise 5.0.1
5.0.1
2019-05-02
15h37 +00:00
2019-05-02
15h37 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cybozu:mailwise:5.0.1:*:*:*:*:*:*:*

Informations

Vendor

cybozu

Product

mailwise

Version

5.0.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-0702 2019-01-09 21h00 +00:00 Directory traversal vulnerability in Cybozu Mailwise 5.0.0 to 5.4.5 allows remote attackers to delete arbitrary files via unspecified vectors.
7.5
High
CVE-2018-0557 2018-06-26 12h00 +00:00 Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors.
6.1
Medium
CVE-2018-0558 2018-06-26 12h00 +00:00 Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML in 'System settings' via unspecified vectors.
6.1
Medium
CVE-2018-0559 2018-06-26 12h00 +00:00 Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'Address' via unspecified vectors.
6.1
Medium
CVE-2016-4841 2017-04-21 12h00 +00:00 Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers.
4.3
Medium
CVE-2016-4842 2017-04-20 16h00 +00:00 Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information on when an email is read.
4.3
Medium
CVE-2016-4843 2017-04-20 16h00 +00:00 Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information.
6.5
Medium
CVE-2016-4844 2017-04-20 16h00 +00:00 Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks.
4.3
Medium
CVE-2014-5314 2014-11-24 01h00 +00:00 Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
9