CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-39457

Cybozu Garoon 6.0.0 to 6.0.1 contains a cross-site scripting vulnerability in PDF preview. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user’s web browser.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.4%

CVSS Severity

CVSS v3 Score 5.4

References

https://jvn.jp/en/jp/JVN74825766/
https://kb.cybozu.support/?product=garoon&v=&fv=6.0.2&t=%E8%84%86%E5%BC%B1%E6%80%A7&f=&r=&b=&s=&posts_per_page=20
https://jvn.jp/en/jp/JVN74825766/
https://kb.cybozu.support/?product=garoon&v=&fv=6.0.2&t=%E8%84%86%E5%BC%B1%E6%80%A7&f=&r=&b=&s=&posts_per_page=20

Products affected by CVE-2024-39457

Cybozu » Garoon » Version: 6.0.0

cpe:2.3:a:cybozu:garoon:6.0.0
Cybozu » Garoon » Version: 6.0.1

cpe:2.3:a:cybozu:garoon:6.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-39457

Products

Pricing

Contact Us