CVE-2019-5945

EUVD-2019-15513
Cybozu Garoon 4.2.4 to 4.10.1 allow remote attackers to obtain the users' credential information via the authentication of Cybozu Garoon.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
Affected Products (NVD)
VendorProductVersion
cybozugaroon
4.2.4 ≤
𝑥
≤ 4.10.1
𝑥
= Vulnerable software versions
References
http://jvn.jp/en/jp/JVN58849431/index.html
https://kb.cybozu.support/article/35488/
http://jvn.jp/en/jp/JVN58849431/index.html
https://kb.cybozu.support/article/35488/