Improper access control vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the date of Custom App via unspecified vectors.
References
Link | Resource |
---|---|
https://jvn.jp/en/jp/JVN45797538/index.html | Third Party Advisory |
https://kb.cybozu.support/article/36865/ | Vendor Advisory |
Configurations
History
23 Mar 2021, 13:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:cybozu:office:*:*:*:*:*:*:*:* | |
CWE | CWE-287 | |
CVSS |
v2 : v3 : |
v2 : 4.0
v3 : 4.3 |
References | (MISC) https://kb.cybozu.support/article/36865/ - Vendor Advisory | |
References | (MISC) https://jvn.jp/en/jp/JVN45797538/index.html - Third Party Advisory |
18 Mar 2021, 01:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-18 01:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-20634
Mitre link : CVE-2021-20634
CVE.ORG link : CVE-2021-20634
JSON object : View
Products Affected
cybozu
- office
CWE