2 matches found
CVE-2017-2258
CVE-2017-2258 affects Cybozu Garoon 4.2.4–4.2.5 and is a directory traversal in the Garoon SOAP API “WorkflowHandleApplications” (CWE-22) that can allow an attacker to read arbitrary files. This vulnerability is documented across multiple feeds (NVD, CVE lists, OpenVAS) with a reported impact of ...
JVN#63564682: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. Denial-of-service DoS vulnerability in the application menu's edit function CWE-20 - CVE-2017-2254 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H| Base Score: 5.5 CVSS...