exploitDog

GHSA-xjj2-r3pr-m35h

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.

Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.

Ссылки

EPSS

Процентиль: 37%

0.00153

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2017-2094

CVSS3: 4.3

nvd

почти 9 лет назад

Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.

EPSS

Процентиль: 37%

0.00153

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-269