What is CVE-2018-16171?

CVE-2018-16171 is a directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8, which allows remote attackers to execute Java code files on the server.

What is the severity of CVE-2018-16171?

CVE-2018-16171 has a severity rating of 8.8 (high).

Where can I find more information about CVE-2018-16171?

You can find more information about CVE-2018-16171 on the JVN website (https://jvn.jp/en/jp/JVN23161885/index.html) and the Cybozu Support Knowledge Base (https://kb.cybozu.support/article/35259/).

Vulnerability/
CVE-2018-16171

high

8.8

CWE

9/1/2019

5/8/2024

CVE-2018-16171: Path Traversal

Q: How does the directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 occur?

The directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 occurs due to insufficient input validation, allowing remote attackers to manipulate file paths and access files outside the intended directory.

Q: How can I fix the directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8?

To fix the vulnerability, update Cybozu Remote Service to version 3.2.0 or later, which contains the necessary fixes and patches to address the directory traversal vulnerability.

First published: Wed Jan 09 2019(Updated: )

Directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 allows remote attackers to execute Java code file on the server via unspecified vectors.

Credit: vultures@jpcert.or.jp

Affected Software	Affected Version	How to fix
Cybozu Remote Service Manager	>=3.0.0<=3.1.8
Microsoft Windows

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-16171?
CVE-2018-16171 is a directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8, which allows remote attackers to execute Java code files on the server.
How does the directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 occur?
The directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 occurs due to insufficient input validation, allowing remote attackers to manipulate file paths and access files outside the intended directory.
What is the severity of CVE-2018-16171?
CVE-2018-16171 has a severity rating of 8.8 (high).
How can I fix the directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8?
To fix the vulnerability, update Cybozu Remote Service to version 3.2.0 or later, which contains the necessary fixes and patches to address the directory traversal vulnerability.
Where can I find more information about CVE-2018-16171?
You can find more information about CVE-2018-16171 on the JVN website (https://jvn.jp/en/jp/JVN23161885/index.html) and the Cybozu Support Knowledge Base (https://kb.cybozu.support/article/35259/).

collector/nvd-index
agent/weakness
agent/references
agent/severity
agent/author
agent/type
agent/event
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/cybozu
canonical/cybozu remote service manager
version/cybozu remote service manager/3.0.0
version/cybozu remote service manager/3.1.8
vendor/microsoft
canonical/microsoft windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.