3 matches found
CVE-2020-5565
Improper input validation vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows a remote authenticated attacker to alter the application's data via the applications 'Workflow' and 'MultiReport'...
CVE-2020-5565
CVE-2020-5565 affects Cybozu Garoon 4.0.0–4.10.3. The connected JVN entry documents an Input validation bypass in the Workflow and MultiReport applications (CWE-20), allowing a remote authenticated attacker to alter the product’s data. Root cause: improper input validation in the targeted compone...
JVN#35649781: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. Authentication bypass in the API used to specify the fields CWE-287 - CVE-2020-5563 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N| Base Score: 5.3 CVSS v2|...