Описание
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-2029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57976
- http://cybozu.co.jp/products/dl/notice/detail/0034.html
- http://jvn.jp/en/jp/JVN87730223/index.html
- http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html
- http://secunia.com/advisories/39508
- http://www.ipa.go.jp/security/english/vuln/201004_cybozu_en.html
- http://www.osvdb.org/63933
EPSS
Процентиль: 57%
0.00351
Низкий
CVE ID
Связанные уязвимости
nvd
больше 15 лет назад
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
EPSS
Процентиль: 57%
0.00351
Низкий