VYPR
Medium severity5.4NVD Advisory· Published Apr 28, 2017· Updated Jun 17, 2026

CVE-2017-2114

CVE-2017-2114

Description

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Cybozu/Office7 versions
    cpe:2.3:a:cybozu:office:10.1.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:cybozu:office:10.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cybozu:office:10.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cybozu:office:10.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cybozu:office:10.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cybozu:office:10.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cybozu:office:10.5.0:*:*:*:*:*:*:*
    • (no CPE)range: 10.0.0 - 10.5.0
  • Cybozu, Inc./Cybozu Officev5
    Range: 10.0.0 to 10.5.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.