CVE-2018-16178

Description

Cybozu Garoon 3.0.0 to 4.10.0 allows remote attackers to bypass access restriction to view information available only for a sign-on user via Single sign-on function.

Affected products

• Cybozu, Inc. / Cybozu Garoon3.0.0 to 4.10.0 – 3.0.0 to 4.10.0

References

• MISChttps://jvn.jp/en/jp/JVN25385698/index.html
• MISChttps://kb.cybozu.support/article/35265