1. CVE-Search
  2. CVE-2017-2095
ID CVE-2017-2095
Summary Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in the mail function leading to an alteration of the order of mail folders via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:cybozu:garoon:3.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.5.5:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.5.5:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:3.7.5:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:3.7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:cybozu:garoon:4.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:cybozu:garoon:4.2.3:*:*:*:*:*:*:*
CVSS
Base: 4.0 (as of 24-08-2020 - 17:37)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:S/C:N/I:P/A:N
refmap via4
bid 96429
jvn JVN#73182875
misc https://support.cybozu.com/ja-jp/article/9660
Last major update 24-08-2020 - 17:37
Published 28-04-2017 - 16:59
Last modified 24-08-2020 - 17:37
Back to Top