Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-20768
Operational restrictions bypass vulnerability in Scheduler and MultiReport of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to delete the data of Scheduler and MultiReport without the appropriate privilege.
Cybozu Garoon
6.1
CVSSv3
CVE-2021-20771
Cross-site scripting vulnerability in some functions of E-Mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20773
There is a vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.0, which may allow a remote authenticated malicious user to delete the route information Workflow without the appropriate privilege.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20775
Improper input validation vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated malicious user to obtain the data of Comment and Space without the viewing privilege.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20757
Operational restrictions bypass vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to alter the data of Portal without the appropriate privilege.
Cybozu Garoon
8
CVSSv3
CVE-2021-20758
Cross-site request forgery (CSRF) vulnerability in Message of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to hijack the authentication of administrators and perform an arbitrary operation via unspecified vectors.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20759
Operational restrictions bypass vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated malicious user to alter the data of Portal without the appropriate privilege.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20760
Improper input validation vulnerability in User Profile of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to alter the data of User Profile without the appropriate privilege.
Cybozu Garoon
4.3
CVSSv3
CVE-2021-20763
Operational restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to obtain the data of Portal without the appropriate privilege.
Cybozu Garoon
5.3
CVSSv3
CVE-2021-20764
Improper input validation vulnerability in Attaching Files of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote malicious user to alter the data of Attaching Files.
Cybozu Garoon
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »