CVE-2016-4908

Summary

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Garoon3.0.0 to 4.2.2affected

Weaknesses

  • Fails to restrict access

ADP Enrichment

CVE Program Container

Additional References

References