CVE-2021-20772
First published: Wed Aug 18 2021(Updated: )
Information disclosure vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to obtain the title of Bulletin without the viewing privilege.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cybozu Garoon | >=4.10.0<=5.5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this information disclosure vulnerability in Bulletin of Cybozu Garoon?
The vulnerability ID is CVE-2021-20772.
What is the severity rating of CVE-2021-20772?
CVE-2021-20772 has a severity rating of 4.3 (medium).
Which versions of Cybozu Garoon are affected by CVE-2021-20772?
The vulnerability affects Cybozu Garoon versions 4.10.0 to 5.5.0.
How can a remote attacker exploit this vulnerability?
A remote authenticated attacker can exploit this vulnerability to obtain the title of Bulletin without the viewing privilege.
Are there any references or sources for more information about CVE-2021-20772?
Yes, you can find more information about the vulnerability at the following sources: [1](https://cs.cybozu.co.jp/2021/007206.html), [2](https://jvn.jp/en/jp/JVN54794245/index.html)
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/tags
- agent/event
- agent/description
- vendor/cybozu
- canonical/cybozu garoon
- version/cybozu garoon/4.10.0
- version/cybozu garoon/5.5.0