Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated malicious users to bypass access restriction to view and/or alter Single sign-on settings via unspecified vectors.
cybozu garoon