CVE-2017-2095
CVE-2017-2095 affects Cybozu Garoon 3.0.0 to 4.2.3. A remote authenticated attacker can bypass access restrictions in the mail function, resulting in alteration of the order of mail folders. The root cause is an access restriction flaw in the mail handling logic. remediation per the documents is ...