Cybozu Garoon 3.1 through 4.2 allows remote authenticated users to bypass intended restrictions on MultiReport reading via unspecified vectors.
2016-06-25T21:59:02.593
2025-04-12T10:46:40.837
Deferred
CVSSv3.0: 6.5 (MEDIUM)
AV:N/AC:L/Au:S/C:P/I:N/A:N
8.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | cybozu | garoon | 3.1.0 | Yes |
| Application | cybozu | garoon | 3.1.1 | Yes |
| Application | cybozu | garoon | 3.1.2 | Yes |
| Application | cybozu | garoon | 3.1.3 | Yes |
| Application | cybozu | garoon | 3.5.0 | Yes |
| Application | cybozu | garoon | 3.5.1 | Yes |
| Application | cybozu | garoon | 3.5.2 | Yes |
| Application | cybozu | garoon | 3.5.3 | Yes |
| Application | cybozu | garoon | 3.5.4 | Yes |
| Application | cybozu | garoon | 3.5.5 | Yes |
| Application | cybozu | garoon | 3.7.0 | Yes |
| Application | cybozu | garoon | 3.7.1 | Yes |
| Application | cybozu | garoon | 3.7.2 | Yes |
| Application | cybozu | garoon | 3.7.3 | Yes |
| Application | cybozu | garoon | 3.7.4 | Yes |
| Application | cybozu | garoon | 3.7.5 | Yes |
| Application | cybozu | garoon | 4.0.0 | Yes |
| Application | cybozu | garoon | 4.0.1 | Yes |
| Application | cybozu | garoon | 4.0.2 | Yes |
| Application | cybozu | garoon | 4.0.3 | Yes |
| Application | cybozu | garoon | 4.2.0 | Yes |