Bypassing Access Restriction in Cybozu Garoon 4.0.0 to 4.10.1 via 'Multi Report' Application

Bypassing Access Restriction in Cybozu Garoon 4.0.0 to 4.10.1 via 'Multi Report' Application

CVE-2019-5941 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated attackers to bypass access restriction alter the Report without access privileges via the application 'Multi Report'.

Learn more about our Web Application Penetration Testing UK.