CVE-2011-2677

2011-10-2118:00:00

jpcert

www.cve.org

5.9 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.9%

JSON

Cybozu Office before 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.

References

cs.cybozu.co.jp/information/20111005notice01.php

jvn.jp/en/jp/JVN84838479/index.html

jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000079.html

osvdb.org/76124

secunia.com/advisories/46321

www.securityfocus.com/bid/50015

exchange.xforce.ibmcloud.com/vulnerabilities/70411