| Max CVSS | 4.3 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-2095 | 4.0 |
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in the mail function leading to an alteration of the order of mail folders via unspecified vectors.
|
24-08-2020 - 17:37 | 28-04-2017 - 16:59 | |
| CVE-2017-2094 | 4.0 |
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Workflow and the "MultiReport" function to alter or delete information via unspecified vectors.
|
03-10-2019 - 00:03 | 28-04-2017 - 16:59 | |
| CVE-2017-2091 | 4.0 |
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in Phone Messages function to alter the status of phone messages via unspecified vectors.
|
03-10-2019 - 00:03 | 28-04-2017 - 16:59 | |
| CVE-2017-2090 | 4.0 |
Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
|
05-05-2017 - 13:13 | 28-04-2017 - 16:59 | |
| CVE-2017-2093 | 4.3 |
Cybozu Garoon 3.0.0 to 4.2.3 allow remote attackers to obtain tokens used for CSRF protection via unspecified vectors.
|
03-05-2017 - 13:15 | 28-04-2017 - 16:59 | |
| CVE-2017-2092 | 3.5 |
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
|
03-05-2017 - 12:19 | 28-04-2017 - 16:59 |