Unauthenticated Access to Comment and Space Data in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0

Unauthenticated Access to Comment and Space Data in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0

CVE-2021-20775 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Improper input validation vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to obtain the data of Comment and Space without the viewing privilege.

Learn more about our Web Application Penetration Testing UK.