First published: Tue Jun 26 2018(Updated: )
Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers to bypass authentication to view the schedules that are not permitted to access via unspecified vectors.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Cybozu Office | >=10.0.0<=10.7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2018-0528.
The severity of CVE-2018-0528 is medium (4.3).
Cybozu Office versions 10.0.0 to 10.7.0 are affected by CVE-2018-0528.
The specific vectors that allow authenticated attackers to bypass authentication and view unauthorized schedules is unspecified.
You can find more information about CVE-2018-0528 at the following references: - [JVN Link](http://jvn.jp/en/jp/JVN51737843/index.html) - [Cybozu Support Article](https://support.cybozu.com/ja-jp/article/9812)