Information Disclosure Vulnerability in Cybozu Garoon 3.x and 4.x

Information Disclosure Vulnerability in Cybozu Garoon 3.x and 4.x

CVE-2016-1196 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended access restrictions and obtain sensitive Address Book information via an API call, a different vulnerability than CVE-2015-7776.

Learn more about our Api Penetration Testing.