Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in the mail function leading to an alteration of the order of mail folders via unspecified vectors.
http://www.securityfocus.com/bid/96429
http://jvn.jp/en/jp/JVN73182875/index.html
https://support.cybozu.com/ja-jp/article/9660
Source: Mitre, NVD
Published: 2017-04-28
Updated: 2026-06-17
Base Score: 4
Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N
Severity: Medium
Base Score: 4.3
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS: 0.00195