Vulnerability Details CVE-2016-4867
Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to bypass access restriction to view unauthorized project information via the Project function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.4%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
- http://jvn.jp/en/jp/JVN07148816/index.html
- http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000187.html
- http://www.securityfocus.com/bid/93461
- https://support.cybozu.com/ja-jp/article/9429
- http://jvn.jp/en/jp/JVN07148816/index.html
- http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000187.html
- http://www.securityfocus.com/bid/93461
- https://support.cybozu.com/ja-jp/article/9429
Products affected by CVE-2016-4867
-
cpe:2.3:a:cybozu:office:10.0.0
-
cpe:2.3:a:cybozu:office:10.0.1
-
cpe:2.3:a:cybozu:office:10.0.2
-
cpe:2.3:a:cybozu:office:10.1.0
-
cpe:2.3:a:cybozu:office:10.1.2
-
cpe:2.3:a:cybozu:office:10.2.0
-
cpe:2.3:a:cybozu:office:10.3.0
-
cpe:2.3:a:cybozu:office:10.4.0
-
cpe:2.3:a:cybozu:office:9.0
-
cpe:2.3:a:cybozu:office:9.1.0
-
cpe:2.3:a:cybozu:office:9.2.0
-
cpe:2.3:a:cybozu:office:9.2.1
-
cpe:2.3:a:cybozu:office:9.3.0
-
cpe:2.3:a:cybozu:office:9.3.1
-
cpe:2.3:a:cybozu:office:9.3.2
-
cpe:2.3:a:cybozu:office:9.9.0