VYPR

Cybozu Garoon

by Inc."

CVEs (4)

  • CVE-2019-5991HigSep 12, 2019
    risk 0.49cvss 7.6epss 0.01

    SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.3 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2019-5975MedSep 12, 2019
    risk 0.35cvss 5.4epss 0.01

    DOM-based cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 4.10.2 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2019-5976MedSep 12, 2019
    risk 0.32cvss 4.9epss 0.01

    Cybozu Garoon 4.0.0 to 4.10.2 allows an attacker with administrative rights to cause a denial of service condition via unspecified vectors.

  • CVE-2019-5977MedSep 12, 2019
    risk 0.28cvss 4.3epss 0.01

    Mail header injection vulnerability in Cybozu Garoon 4.0.0 to 4.10.2 may allow a remote authenticated attackers to alter mail header via the application 'E-Mail'.