石井 健太郎

**Name of the Vulnerable Software and Affected Versions** MosP kintai kanri versions 4.6.6 and earlier **Description** The issue allows a remote attacker who can log in to the product to obtain sensitive information. This is due to a path traversal vulnerability. **Recommendations** For versions 4.6.6 and earlier, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MosP kintai kanri versions 4.6.6 and earlier **Description** The issue is related to incorrect permission assignment for a critical resource, which may allow a remote unauthenticated attacker with access to the product to alter the product settings. **Recommendations** For MosP kintai kanri versions 4.6.6 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.