CVE-2015-5649
N/A
N/A
Summary
Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles authentication requests, which allows remote authenticated users to conduct LDAP injection attacks, and consequently bypass intended login restrictions or obtain sensitive information, by leveraging certain group-administration privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://jvn.jp/en/jp/JVN38369032/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000152
- https://support.cybozu.com/ja-jp/article/9176
References
- http://jvn.jp/en/jp/JVN38369032/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000152
- https://support.cybozu.com/ja-jp/article/9176
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.