Design/Logic Flaw

2011-10-2118:55:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.9%

JSON

Cybozu Office before 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.

CPENameOperatorVersion
officele7
officeeq6

CPE	Name	Operator	Version
	office	le	7
	office	eq	6

References

cs.cybozu.co.jp/information/20111005notice01.php

jvn.jp/en/jp/JVN84838479/index.html

jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000079.html

osvdb.org/76124

secunia.com/advisories/46321

www.securityfocus.com/bid/50015

exchange.xforce.ibmcloud.com/vulnerabilities/70411