Improper access control vulnerability in Phone Messages of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the data of Phone Messages via unspecified vectors.
References
Link | Resource |
---|---|
https://jvn.jp/en/jp/JVN45797538/index.html | Third Party Advisory |
https://kb.cybozu.support/article/36872/ | Vendor Advisory |
Configurations
History
23 Mar 2021, 13:32
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.0
v3 : 4.3 |
References | (MISC) https://kb.cybozu.support/article/36872/ - Vendor Advisory | |
References | (MISC) https://jvn.jp/en/jp/JVN45797538/index.html - Third Party Advisory | |
CPE | cpe:2.3:a:cybozu:office:*:*:*:*:*:*:*:* | |
CWE | CWE-287 |
18 Mar 2021, 01:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-18 01:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-20630
Mitre link : CVE-2021-20630
CVE.ORG link : CVE-2021-20630
JSON object : View
Products Affected
cybozu
- office
CWE