CVE-2021-20800

Description

Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

Affected products

• Cybozu, Inc. / Cybozu Remote Service3.1.8 – 3.1.8

References

• MISChttps://jvn.jp/en/jp/JVN52694228/index.html
• MISChttps://kb.cybozu.support/article/37420