First published: Tue Jun 30 2020(Updated: )
Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Cybozu Garoon | >=4.10.3<=5.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5586 is a cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1.
CVE-2020-5586 allows an attacker with administrator rights to inject an arbitrary script via unspecified vectors.
CVE-2020-5586 has a severity rating of medium with a CVSS score of 4.8.
To fix the CVE-2020-5586 vulnerability, update your Cybozu Garoon software to version 5.1.0 or later.
More information about CVE-2020-5586 can be found at the following references: [CVE-2020-5586](https://jvn.jp/en/jp/JVN55497111/index.html) and [Cybozu Support](https://kb.cybozu.support/article/36453/).