Cybozu : Security Vulnerabilities, CVEs, Published In 2017 (Bypass)

CVE-2016-7833

Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.22%
Published
2017-06-09
Updated
2017-06-14

CVE-2016-7801

Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to bypass access restrictions to delete other users' To-Dos via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.12%
Published
2017-06-09
Updated
2017-06-13

CVE-2016-4910

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to delete other operational administrators' MultiReport filters via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.12%
Published
2017-06-09
Updated
2017-06-13

CVE-2016-4908

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.16%
Published
2017-06-09
Updated
2017-06-13

CVE-2016-4874

Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a "reflected file download" attack.
Max CVSS
3.5
EPSS Score
0.13%
Published
2017-04-17
Updated
2017-04-20

CVE-2016-1220

Cybozu Garoon before 4.2.2 does not properly restrict access.
Max CVSS
4.3
EPSS Score
0.14%
Published
2017-04-20
Updated
2017-04-25

CVE-2016-1219

Cybozu Garoon before 4.2.2 allows remote attackers to bypass login authentication via vectors related to API use.
Max CVSS
9.8
EPSS Score
0.47%
Published
2017-04-20
Updated
2017-04-25
7 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close