44 matches found
EUVD-2022-33809
Malicious code in bioql PyPI...
CVE-2022-31472
Browse restriction bypass vulnerability in Cabinet of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to obtain the data of Cabinet...
PT-2023-26009 · Unknown · Creativeitem Mastery Lms
Name of the Vulnerable Software and Affected Versions: Creativeitem Mastery LMS version 1.2 Description: A problematic vulnerability has been found in Creativeitem Mastery LMS. This issue affects an unknown part of the file /browse. The manipulation of the argument search/featured/recommended/ski...
CVE-2022-33311
Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Address Book via unspecified vectors...
CVE-2022-32283
Browse restriction bypass vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Cabinet via unspecified vectors...
CVE-2022-25986
Browse restriction bypass vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Scheduler...
CVE-2022-29891
Browse restriction bypass vulnerability in Custom Ap of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Custom App via unspecified vectors...
CVE-2022-29891
Browse restriction bypass vulnerability in Custom Ap of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Custom App via unspecified vectors...
CVE-2022-32283
Browse restriction bypass vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Cabinet via unspecified vectors...
Authentication flaw
Browse restriction bypass vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Scheduler...
CVE-2022-33311
Cybozu Office contains a browse restriction bypass in the Address Book for versions 10.0.0–10.8.5, allowing a remote authenticated attacker to obtain Address Book data via unspecified vectors. The issue is documented across multiple sources (e.g., NVD/JVN/Red Hat) with consistent impact: data dis...
CVE-2022-33311
Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Address Book via unspecified vectors...
CVE-2022-32283
CVE-2022-32283 affects Cybozu Office (Cabinet component) from version 10.0.0 through 10.8.5. It is described as a browse restriction bypass vulnerability (CWE-284) that allows a remote authenticated attacker to obtain Cabinet data via unspecified vectors. The issue is tied to Cabinet access contr...
CVE-2022-32283
Browse restriction bypass vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Cabinet via unspecified vectors...
CVE-2022-25986
Browse restriction bypass vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Scheduler...
CVE-2022-25986
Summary: CVE-2022-25986 is a browse restriction bypass in the Scheduler of Cybozu Office. Affected versions: Cybozu Office 10.0.0 to 10.8.5. Impact: A remote authenticated attacker may obtain data from the Scheduler due to improper access restrictions in the Scheduler component (data disclosure)....
PT-2022-21205 · Cybozu · Cabinet Of Cybozu Office
Name of the Vulnerable Software and Affected Versions: Cabinet of Cybozu Office versions 10.0.0 through 10.8.5 Description: A browse restriction bypass issue allows a remote authenticated attacker to obtain Cabinet data via unspecified vectors. Recommendations: For versions 10.0.0 through 10.8.5,...
PT-2022-19897 · Cybozu · Cybozu Office
Name of the Vulnerable Software and Affected Versions: Cybozu Office versions 10.0.0 through 10.8.5 Description: A browse restriction bypass issue in the Custom App of Cybozu Office allows a remote authenticated attacker to obtain Custom App data via unspecified vectors. Recommendations: For Cybo...
Multiple vulnerabilities in Cybozu Office
Overview Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-839CyVDB-2300CyVDB-3109 Browse restriction bypass vulnerability in Cabinet CWE-284 - CVE-2022-32283 CyVDB-1795 Operation restriction bypass vulnerability in Project CWE-285 - CVE-2022-32544...
JVN#20573662: Multiple vulnerabilities in Cybozu Office
Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-839CyVDB-2300CyVDB-3109 Browse restriction bypass vulnerability in Cabinet CWE-284 - CVE-2022-32283 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N| Base Score: 4....