CVE-2017-2094

Summary

Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Garoon3.0.0 to 4.2.3affected

Weaknesses

  • Fails to restrict access

ADP Enrichment

CVE Program Container

Additional References

References