Cybozu : Security Vulnerabilities, CVEs, Published In 2017 (Bypass)
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.22%
Published
2017-06-09
Updated
2017-06-14
Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to bypass access restrictions to delete other users' To-Dos via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.12%
Published
2017-06-09
Updated
2017-06-13
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to delete other operational administrators' MultiReport filters via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.12%
Published
2017-06-09
Updated
2017-06-13
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.16%
Published
2017-06-09
Updated
2017-06-13
Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a "reflected file download" attack.
Max CVSS
3.5
EPSS Score
0.13%
Published
2017-04-17
Updated
2017-04-20
Cybozu Garoon before 4.2.2 does not properly restrict access.
Max CVSS
4.3
EPSS Score
0.14%
Published
2017-04-20
Updated
2017-04-25
Cybozu Garoon before 4.2.2 allows remote attackers to bypass login authentication via vectors related to API use.
Max CVSS
9.8
EPSS Score
0.47%
Published
2017-04-20
Updated
2017-04-25
7 vulnerabilities found