Published: 2022/07/04  Last Updated: 2022/07/06

Information from Cybozu, Inc.

Vulnerability ID:JVN#14077132
Title:Multiple vulnerabilities in Cybozu Garoon
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

(July 6,2022 postscript)
[CyVDB-3111] was not a vulnerability. Therefore, we have withdrawn the disclosure.

For more information about this vulnerability, please see our Japanese website.

[CyVDB-2909]複数アプリケーションにおける操作制限回避の脆弱性
https://kb.cybozu.support/article/37728

[CyVDB-3042]複数アプリケーションにおける情報漏えいの脆弱性
https://kb.cybozu.support/article/37731

[CyVDB-3143]掲示板に関する閲覧制限回避の脆弱性
https://kb.cybozu.support/article/37730

update history

2022/07/06