2 matches found
Design/Logic Flaw
Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to bypass intended access restrictions and read arbitrary report titles via unspecified vectors, a different vulnerability than CVE-2015-8484, CVE-2015-8485, and CVE-2016-1152...
CVE-2015-8485
Summary of CVE-2015-8485 / related CVEs (Cybozu Office): Cybozu Office versions 9.9.0–10.3.0 contain a security mechanism bypass vulnerability that can be exploited by a remote, authenticated user to read (and in some entries, write) plan data and bypass established access restrictions. The CNVD ...