First published: Wed Jan 09 2019(Updated: )
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 allows remote attackers to delete arbitrary files via HTTP requests.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Cybozu Office | >=10.0.0<=10.8.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-0703 is a directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 that allows remote attackers to delete arbitrary files via HTTP requests.
Remote attackers can exploit CVE-2018-0703 by sending malicious HTTP requests that contain directory traversal sequences to delete arbitrary files.
CVE-2018-0703 has a severity rating of high with a CVSS score of 7.5.
Cybozu Office 10.0.0 to 10.8.1 are affected by CVE-2018-0703.
To fix the directory traversal vulnerability in Cybozu Office, apply the official patch provided by Cybozu.