RSS   Podatności dla 'Garoon'   RSS

2022-07-11
 
CVE-2022-29512

CWE-862
 

 
Exposure of sensitive information to an unauthorized actor issue in multiple applications of Cybozu Garoon 4.0.0 to 5.9.1 allows a remote authenticated attacker to obtain the data without the viewing privilege.

 
 
CVE-2022-30602

NVD-CWE-noinfo
 

 
Operation restriction bypass in multiple applications of Cybozu Garoon 4.0.0 to 5.9.1 allows a remote authenticated attacker to alter the file information and/or delete the files.

 
 
CVE-2022-30943

NVD-CWE-noinfo
 

 
Browsing restriction bypass vulnerability in Bulletin of Cybozu Garoon 4.0.0 to 5.9.1 allows a remote authenticated attacker to obtain the data of Bulletin.

 
 
CVE-2022-31472

NVD-CWE-noinfo
 

 
Browse restriction bypass vulnerability in Cabinet of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to obtain the data of Cabinet.

 
2022-07-04
 
CVE-2022-26051

CWE-732
 

 
Operation restriction bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Portal.

 
 
CVE-2022-26054

CWE-732
 

 
Operation restriction bypass vulnerability in Link of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Link.

 
 
CVE-2022-26368

CWE-732
 

 
Browse restriction bypass and operation restriction bypass vulnerability in Cabinet of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter and/or obtain the data of Cabinet.

 
 
CVE-2022-27627

CWE-79
 

 
Cross-site scripting vulnerability in Organization's Information of Cybozu Garoon 4.10.2 to 5.5.1 allows a remote attacker to execute an arbitrary script on the logged-in user's web browser.

 
 
CVE-2022-27661

CWE-863
 

 
Operation restriction bypass vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Workflow.

 
 
CVE-2022-27803

CWE-20
 

 
Improper input validation vulnerability in Space of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Space.

 


Copyright 2024, cxsecurity.com

 

Back to Top