Access Restriction Bypass in Cybozu Garoon 4.0.0 to 4.10.1 via Bulletin and Cabinet Applications

Access Restriction Bypass in Cybozu Garoon 4.0.0 to 4.10.1 via Bulletin and Cabinet Applications

CVE-2019-5943 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated attackers to bypass access restriction to view the information without view privileges via the application 'Bulletin' and the application 'Cabinet'.

Learn more about our Web Application Penetration Testing UK.