CVE Vulnerabilities

CVE-2016-1189

Published: Jun 25, 2016 | Modified: Jun 27, 2016
CVSS 3.x
8.1
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CVSS 2.x
5.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended restrictions on reading, creating, or modifying a portlet via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Garoon Cybozu 3.1.0 (including) 3.1.0 (including)
Garoon Cybozu 3.1.1 (including) 3.1.1 (including)
Garoon Cybozu 3.1.2 (including) 3.1.2 (including)
Garoon Cybozu 3.1.3 (including) 3.1.3 (including)
Garoon Cybozu 3.5.0 (including) 3.5.0 (including)
Garoon Cybozu 3.5.1 (including) 3.5.1 (including)
Garoon Cybozu 3.5.2 (including) 3.5.2 (including)
Garoon Cybozu 3.5.3 (including) 3.5.3 (including)
Garoon Cybozu 3.5.4 (including) 3.5.4 (including)
Garoon Cybozu 3.5.5 (including) 3.5.5 (including)
Garoon Cybozu 3.7.0 (including) 3.7.0 (including)
Garoon Cybozu 3.7.1 (including) 3.7.1 (including)
Garoon Cybozu 3.7.2 (including) 3.7.2 (including)
Garoon Cybozu 3.7.3 (including) 3.7.3 (including)
Garoon Cybozu 3.7.4 (including) 3.7.4 (including)
Garoon Cybozu 3.7.5 (including) 3.7.5 (including)
Garoon Cybozu 4.0.0 (including) 4.0.0 (including)
Garoon Cybozu 4.0.1 (including) 4.0.1 (including)
Garoon Cybozu 4.0.2 (including) 4.0.2 (including)
Garoon Cybozu 4.0.3 (including) 4.0.3 (including)
Garoon Cybozu 4.2.0 (including) 4.2.0 (including)

References