Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote authenticated attacker to delete the data of Shared To-Dos.
History

Fri, 23 Aug 2024 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Cybozu
Cybozu garoon
Weaknesses CWE-863
CPEs cpe:2.3:a:cybozu:garoon:*:*:*:*:*:*:*:*
Vendors & Products Cybozu
Cybozu garoon
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-06-11T05:21:04.938Z

Updated: 2024-08-14T19:58:39.161Z

Reserved: 2024-04-03T09:14:19.135Z

Link: CVE-2024-31402

cve-icon Vulnrichment

Updated: 2024-08-02T01:52:56.517Z

cve-icon NVD

Status : Modified

Published: 2024-06-11T06:15:10.650

Modified: 2024-11-21T09:13:27.833

Link: CVE-2024-31402

cve-icon Redhat

No data.