Cybozu Garoon SSRF Vulnerability in V-CUBE Meeting Function

Cybozu Garoon SSRF Vulnerability in V-CUBE Meeting Function

CVE-2020-5562 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Server-side request forgery (SSRF) vulnerability in Cybozu Garoon 4.6.0 to 4.6.3 allows a remote attacker with an administrative privilege to issue arbitrary HTTP requests to other web servers via V-CUBE Meeting function.

Learn more about our Web App Pen Testing.