Lucene search

JpcertCVELIST:CVE-2023-46278

HistoryOct 31, 2023 - 11:01 p.m.

CVE-2023-46278

2023-10-3123:01:20

jpcert

www.cve.org

vulnerability

resource consumption

cybozu

remote attacker

storage space

delayed communication

cve-2023-46278

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON

Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.1.0 to 4.1.1 allows a remote authenticated attacker to consume huge storage space or cause significantly delayed communication.

CNA Affected

[
  {
    "vendor": "Cybozu, Inc.",
    "product": "Cybozu Remote Service",
    "versions": [
      {
        "version": "4.1.0 to 4.1.1",
        "status": "affected"
      }
    ]
  }
]

References

cs.cybozu.co.jp/2023/010657.html

jvn.jp/en/jp/JVN94132951/