Email Content Exposure in Cybozu Mailwise Product
CVE-2013-4698

Currently unrated

Key Information:

Vendor: Cybozu
Status: Mailwise
Vendor: CVE Published:; 16 August 2013

What is CVE-2013-4698?

Certain versions of Cybozu Mailwise, specifically 5.0.4 and 5.0.5, allow remote authenticated users to inadvertently access sensitive email content meant for other users. This vulnerability arises when users can read Subject header lines within their own mailbox, leading to potential unauthorized information disclosure in opportunistic scenarios.

References

http://jvndb.jvn.jp/jvndb/JVNDB-2013-000077

third-party-advisoryx_refsource_JVNDB

http://cs.cybozu.co.jp/information/20130812up02.php

x_refsource_CONFIRM

http://jvn.jp/en/jp/JVN21103639/374951/index.html

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 16, 2013

CVE-2013-4698 Data

JSON