2 matches found
CVE-2018-0528
CVE-2018-0528 affects Cybozu Office versions 10.0.0–10.7.0. An authenticated user can bypass authentication to view schedules they are not permitted to access (Browse restriction bypass in Scheduler, CWE-264). Impact stated: a user who can log in may view restricted schedules. Remediation: update...
JVN#51737843: Multiple vulnerabilities in Cybozu Office
Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. Information disclosure in the application "Message" when viewing an external image CWE-200 - CVE-2018-0526 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N| Base Score:...