Lucene search
CybozuCybozu Garoon
3 matches found
CVE-2017-2144
Cybozu Garoon 3.0.0 to 4.2.4 may allow an attacker to lock another user's file through a specially crafted page.
5.8CVSS5.3AI score0.00287EPSS
CVE-2017-2146
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.4 allows remote attackers to inject arbitrary web script or HTML via application menu.
4.8CVSS5.1AI score0.002EPSS
CVE-2017-2145
Session fixation vulnerability in Cybozu Garoon 4.0.0 to 4.2.4 allows remote attackers to perform arbitrary operations via unspecified vectors.
5.8CVSS5.5AI score0.00197EPSS