CVE-2021-20630

Medium

4.3/10

Summary

Improper access control vulnerability in Phone Messages of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the data of Phone Messages via unspecified vectors.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: LOW
Availability Impact: NONE

References

Advisory Timeline

Published Mar 18, 2021

CVE-2021-20630

Summary

References

Advisory Timeline

Wireshark

DustiLock

KICS SaaS