Bypassing Access Restriction in Cybozu Garoon Bulletin Board

Bypassing Access Restriction in Cybozu Garoon Bulletin Board

CVE-2019-5933 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Cybozu Garoon 4.0.0 to 4.10.0 allows remote authenticated attackers to bypass access restriction to view the Bulletin Board without view privileges via the application 'Bulletin'.

Learn more about our Web Application Penetration Testing UK.