PT-2017-9384 · Cybozu · Cybozu Dezie

Published

2017-06-09

Updated

2017-06-14

CVE-2016-7833

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Cybozu Dezie versions 8.0.0 through 8.1.1

Description The issue allows remote attackers to bypass access restrictions, enabling them to delete an arbitrary DBM file. DBM refers to a proprietary format used by Cybozu Dezie.

Recommendations For versions 8.0.0 through 8.1.1, update to a version that contains a fix for this issue to prevent unauthorized deletion of DBM files.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2016-7833

Affected Products

Cybozu Dezie

PT-2017-9384 · Cybozu · Cybozu Dezie

CVE-2016-7833

Weakness Enumeration

Related Identifiers

Affected Products

References · 5