Description
Webservice-DIC yoyaku_v41 allows remote attackers to bypass authentication and complete a conference-room reservation via unspecified vectors, as demonstrated by an "unintentional reservation."
References (2)
Core 2
Core References
Vendor Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000108
Vendor Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN52248864/index.html
Scores
EPSS
0.0128
EPSS Percentile
66.3%
Details
CWE
CWE-287
Status
published
Products (1)
webservice-dic/yoyaku
41
Published
Jul 29, 2015
Tracked Since
Feb 18, 2026