CVE-2017-2094

Sažetak

Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN73182875/index.html
http://www.securityfocus.com/bid/96429
https://support.cybozu.com/ja-jp/article/9655

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

03-10-2019 - 00:03

Objavljeno

28-04-2017 - 16:59