CVE-2022-33311
First published: Thu Aug 18 2022(Updated: )
Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Address Book via unspecified vectors.
Credit: vultures@jpcert.or.jp vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cybozu Office | >=10.0.0<=10.8.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this security issue?
The vulnerability ID of this security issue is CVE-2022-33311.
What is the severity of CVE-2022-33311?
The severity of CVE-2022-33311 is medium, with a CVSS score of 4.3.
What is the affected software?
The affected software is Cybozu Office versions 10.0.0 to 10.8.5.
How does the vulnerability in Address Book of Cybozu Office work?
The vulnerability allows a remote authenticated attacker to bypass browse restrictions and obtain data from the Address Book via unspecified vectors.
Are there any suggested fixes or patches for CVE-2022-33311?
At this time, there are no specific fixes or patches available. It is recommended to follow the recommendations provided by the vendor.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cybozu
- canonical/cybozu office
- version/cybozu office/10.0.0
- version/cybozu office/10.8.5