exploitDog

GHSA-vq4m-2gv5-7q79

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.

Ссылки

EPSS

Процентиль: 43%

0.00209

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-4908

CVSS3: 4.3

nvd

больше 8 лет назад

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.

EPSS

Процентиль: 43%

0.00209

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284