2 matches found
CVE-2014-0817
Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 does not properly manage sessions, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors...
CVE-2014-0817
CVE-2014-0817 affects Cybozu Garoon 2.x (up to 2.5.4) and 3.x (up to 3.7 SP3). The issue is improper session management that enables remote authenticated users to impersonate arbitrary accounts via unspecified vectors. Impact as described across multiple sources: an authenticated user could imper...