Lucene search
HistoryJul 20, 2014 - 11:12 a.m.
CVE-2014-1993
cybozu garoon
portlets subsystem
access restrictions
cve-2014-1993
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
6.3 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.7%
The Portlets subsystem in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.
Affected configurations
Node
cybozugaroonMatch2.0.0
ORcybozugaroonMatch2.1.0
ORcybozugaroonMatch2.1.1
ORcybozugaroonMatch2.1.2
ORcybozugaroonMatch2.1.3
ORcybozugaroonMatch2.5.0
ORcybozugaroonMatch2.5.1
ORcybozugaroonMatch2.5.2
ORcybozugaroonMatch2.5.3
ORcybozugaroonMatch2.5.4
ORcybozugaroonMatch3.0.0
ORcybozugaroonMatch3.0.1
ORcybozugaroonMatch3.0.2
ORcybozugaroonMatch3.0.3
ORcybozugaroonMatch3.1.0
ORcybozugaroonMatch3.1.1
ORcybozugaroonMatch3.1.2
ORcybozugaroonMatch3.1.3
ORcybozugaroonMatch3.5.0
ORcybozugaroonMatch3.5.1
ORcybozugaroonMatch3.5.2
ORcybozugaroonMatch3.5.3
ORcybozugaroonMatch3.5.4
ORcybozugaroonMatch3.5.5
ORcybozugaroonMatch3.7sp1
ORcybozugaroonMatch3.7sp2
ORcybozugaroonMatch3.7sp3
Related
prion
prion
Design/Logic Flaw
2014-07-20 11:12:00
cvelist
cvelist
CVE-2014-1993
2014-07-20 10:00:00
jvn
jvn
JVN#75990997: Cybozu Garoon vulnerable to access restriction bypass
2014-07-15 00:00:00
nvd
nvd
CVE-2014-1993
2014-07-20 11:12:49
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
6.3 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.7%
Related for CVE-2014-1993