Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:87895771
HistoryNov 25, 2022 - 12:00 a.m.

JVN#87895771: Cybozu Remote Service vulnerable to Uncontrolled Resource Consumption

2022-11-2500:00:00
Japan Vulnerability Notes
jvn.jp
21
cybozu remote service
uncontrolled resource consumption
cwe-400
dos
update
software
developer
affected products

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

57.9%

JSON

Cybozu Remote Service provided by Cybozu, Inc. is vulnerable to uncontrolled resource consumption (CWE-400).

Impact

A logged-in user may consume huge storage space, resulting to a denial-of-service (DoS) condition.

Solution

Update the Software
Update to the latest version according to the information provided by the developer.

Products Affected

  • Cybozu Remote Service 4.0.0 to 4.0.3

Related

prion 1
cvelist 1
nvd 1
cve 1
prion
prion
Race condition
2022-12-07 04:15:00
cvelist
cvelist
CVE-2022-44608
2022-12-07 00:00:00
nvd
nvd
CVE-2022-44608
2022-12-07 04:15:11
cve
cve
CVE-2022-44608
2022-12-07 04:15:11

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

57.9%

JSON
Related for JVN:87895771
prion1cvelist1nvd1cve1