Design/Logic Flaw

2016-06-2521:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

51.8%

JSON

Cybozu Garoon 3.1 through 4.2 allows remote authenticated users to bypass intended restrictions on MultiReport reading via unspecified vectors.

CPENameOperatorVersion
garooneq3.5.5
garooneq4.0.3
garooneq3.5.1
garooneq4.0.0
garooneq3.1.1
garooneq3.7.4
garooneq3.7.2
garooneq3.5.3
garooneq3.5.0
garooneq3.7.0

Name	Operator	Version
garoon	eq	3.5.5
garoon	eq	4.0.3
garoon	eq	3.5.1
garoon	eq	4.0.0
garoon	eq	3.1.1
garoon	eq	3.7.4
garoon	eq	3.7.2
garoon	eq	3.5.3
garoon	eq	3.5.0
garoon	eq	3.7.0

Rows per page:

1-10 of 211

References

jvn.jp/en/jp/JVN18975349/index.html

jvndb.jvn.jp/jvndb/JVNDB-2016-000094

garoon.cybozu.co.jp/support/update/package/421sp1.html

support.cybozu.com/ja-jp/article/8877