2 matches found
CVE-2017-2094
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors...
CVE-2017-2094
Cybozu Garoon 3.0.0–4.2.3 contains an access restriction flaw in Workflow and the MultiReport function (CWE-284) that allows remote authenticated attackers to bypass permissions and alter or delete information. Affected product: Cybozu Garoon. Root cause: inadequate access control within the Work...