Arbitrary File Read Vulnerability in Cybozu Garoon 4.2.4 to 4.2.5

Arbitrary File Read Vulnerability in Cybozu Garoon 4.2.4 to 4.2.5

CVE-2017-2258 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Directory traversal vulnerability in Cybozu Garoon 4.2.4 to 4.2.5 allows an attacker to read arbitrary files via Garoon SOAP API "WorkflowHandleApplications".

Learn more about our Api Penetration Testing.