3 matches found
CVE-2018-0548
CVE-2018-0548 is a Space browse restriction bypass in Cybozu Garoon 4.0.0–4.6.0 that lets an authenticated user view the closed title in Space via unspecified vectors. The impact is that a logged-in user may access restricted Space information. The mitigation is to update Cybozu Garoon to the lat...
CVE-2018-0548
Cybozu Garoon 4.0.0 to 4.6.0 allows remote authenticated attackers to bypass access restriction to view the closed title of "Space" via unspecified vectors...
JVN#65268217: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. SQL injection in the application "Address" CWE-89 - CVE-2018-0530 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N| Base Score: 6.5 CVSS v2| AV:N/AC:L/Au:S/C:P/I:N/A:N|...