Garoon Security Vulnerabilities and Issues — Garoon CVE List

Lucene search

CybozuGaroon

5 matches found

CVE•added 2019/09/12 5:15 p.m.•123 views

CVE-2019-5991

SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.3 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

7.6CVSS7.6AI score0.00465EPSS

CVE•added 2019/09/12 5:15 p.m.•113 views

CVE-2019-5976

Cybozu Garoon 4.0.0 to 4.10.2 allows an attacker with administrative rights to cause a denial of service condition via unspecified vectors.

4.9CVSS5.3AI score0.00314EPSS

CVE•added 2019/09/12 5:15 p.m.•113 views

CVE-2019-5978

Open redirect vulnerability in Cybozu Garoon 4.0.0 to 4.10.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the application 'Scheduler'.

6.1CVSS6.2AI score0.00274EPSS

CVE•added 2019/09/12 5:15 p.m.•111 views

CVE-2019-5975

DOM-based cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 4.10.2 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5AI score0.00195EPSS

CVE•added 2019/09/12 5:15 p.m.•104 views

CVE-2019-5977

Mail header injection vulnerability in Cybozu Garoon 4.0.0 to 4.10.2 may allow a remote authenticated attackers to alter mail header via the application 'E-Mail'.

4.3CVSS4.8AI score0.00207EPSS