CVE-2017-2254

EUVD-2017-11437
Cybozu Garoon 3.5.0 to 4.2.5 allows an attacker to cause a denial of service in the application menu's edit function via specially crafted input
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.9 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
cybozugaroon
3.5.0
cybozugaroon
3.5.1
cybozugaroon
3.5.2
cybozugaroon
3.5.3
cybozugaroon
3.5.4
cybozugaroon
3.5.5
cybozugaroon
3.7.0
cybozugaroon
3.7.1
cybozugaroon
3.7.2
cybozugaroon
3.7.3
cybozugaroon
3.7.4
cybozugaroon
3.7.5
cybozugaroon
4.0.1
cybozugaroon
4.0.2
cybozugaroon
4.0.3
cybozugaroon
4.2.0
cybozugaroon
4.2.1
cybozugaroon
4.2.2
cybozugaroon
4.2.3
cybozugaroon
4.2.4
cybozugaroon
4.2.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://jvn.jp/en/jp/JVN63564682/index.html
https://support.cybozu.com/ja-jp/article/9751
https://jvn.jp/en/jp/JVN63564682/index.html
https://support.cybozu.com/ja-jp/article/9751