CVSS: 4.3EPSS: 0%CPEs: 14EXPL: 0CVE-2016-4841
https://notcve.org/view.php?id=CVE-2016-4841
Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers. Cybozu Mailwise en versiones anteriores a 5.4.0 permite a atacantes inyectar las cabeceras de email arbitrarios. • http://jvn.jp/en/jp/JVN01353821/index.html http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000135.html http://www.securityfocus.com/bid/92459 https://support.cybozu.com/ja-jp/article/9607 • CWE-20: Improper Input Validation •
CVSS: 4.3EPSS: 0%CPEs: 14EXPL: 0CVE-2016-4844
https://notcve.org/view.php?id=CVE-2016-4844
Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks. Cybozu Mailwise en versiones anteriores a 5.4.0 permite a atacantes remotos conducir ataques de clickjacking. • http://jvn.jp/en/jp/JVN04125292/index.html http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000138.html http://www.securityfocus.com/bid/92462 https://support.cybozu.com/ja-jp/article/9605 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 14EXPL: 0CVE-2016-4843
https://notcve.org/view.php?id=CVE-2016-4843
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information. Cybozu Mailwise en versiones anteriores a 5.4.0 permite a atacantes remotos obtener información sensible de cookies. • http://jvn.jp/en/jp/JVN03052683/index.html http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000137.html http://www.securityfocus.com/bid/92461 https://support.cybozu.com/ja-jp/article/9654 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 14EXPL: 0CVE-2016-4842
https://notcve.org/view.php?id=CVE-2016-4842
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information on when an email is read. Cybozu Mailwise en versiones anteriores a 5.4.0 permite a atacantes remotos obtener información cuando un email es leído. • http://jvn.jp/en/jp/JVN02576342/index.html http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000136.html http://www.securityfocus.com/bid/92460 https://support.cybozu.com/ja-jp/article/9606 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.0EPSS: 4%CPEs: 5EXPL: 0CVE-2014-5314
https://notcve.org/view.php?id=CVE-2014-5314
Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages. Desbordamiento de buffer en Cybozu Office 9 y 10 anterior a 10.1.0, Mailwise 4 y 5 anterior a 5.1.4, y Dezie 8 anterior a 8.1.1 permite a usuarios remotos autenticados ejecutar código arbitrario a través de mensajes de email. • http://jvn.jp/en/jp/JVN14691234/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000130 http://secunia.com/advisories/62248 https://cs.cybozu.co.jp/2014/1110-2.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •