CVE-2024-31402

Summary

Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote authenticated attacker to delete the data of Shared To-Dos.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Garoon5.0.0 to 5.15.2affected

Weaknesses

  • Incorrect Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References