First published: Tue Jun 30 2020(Updated: )
Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Cybozu Garoon | >=5.0.0<=5.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5585 is a cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1.
CVE-2020-5585 allows an attacker with administrator rights to inject an arbitrary script via unspecified vectors.
CVE-2020-5585 has a severity rating of medium and a CVSS score of 4.8.
To fix CVE-2020-5585, it is recommended to update Cybozu Garoon to version 5.0.2 or higher.
You can find more information about CVE-2020-5585 at the following references: [1] https://jvn.jp/en/jp/JVN55497111/index.html [2] https://kb.cybozu.support/article/36432/