2 matches found
CVE-2018-0532
CVE-2018-0532 affects Cybozu Garoon 3.0.0–4.2.6. Remote authenticated attackers could bypass login/access restrictions to alter data in the Standard database via unspecified vectors. Impact: unauthorized modification of setting data by a logged-in admin. Remediation per vendor: update to the late...
JVN#65268217: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. SQL injection in the application "Address" CWE-89 - CVE-2018-0530 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N| Base Score: 6.5 CVSS v2| AV:N/AC:L/Au:S/C:P/I:N/A:N|...