First published: Tue Jun 30 2020(Updated: )
Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to view and/or alter Single sign-on settings via unspecified vectors.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Cybozu Garoon | >=4.0.0<=5.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5580 is a vulnerability in Cybozu Garoon 4.0.0 to 5.0.1 that allows remote authenticated attackers to bypass access restriction to view and/or alter Single sign-on settings.
Attackers can exploit CVE-2020-5580 by leveraging unspecified vectors to bypass access restrictions and manipulate Single sign-on settings.
CVE-2020-5580 has a severity rating of 8.1 (high).
Cybozu Garoon versions 4.0.0 to 5.0.1 are affected by CVE-2020-5580.
Yes, a fix is available for CVE-2020-5580. Users should refer to the official Cybozu Garoon documentation for the appropriate patch or update.