Server-side request forgery (SSRF) vulnerability in Cybozu Garoon 4.6.0 to 4.6.3 allows a remote attacker with an administrative privilege to issue arbitrary HTTP requests to other web servers via V-CUBE Meeting function.
References
Link | Resource |
---|---|
https://kb.cybozu.support/article/36304 | Vendor Advisory |
https://jvn.jp/en/jp/JVN58849431/index.html | Third Party Advisory |
Configurations
Information
Published : 2020-04-27 21:15
Updated : 2020-05-01 09:39
NVD link : CVE-2020-5562
Mitre link : CVE-2020-5562
JSON object : View
CWE
CWE-918
Server-Side Request Forgery (SSRF)
Products Affected
cybozu
- garoon