CVE-2013-6001

2013-12-0511:00:00

jpcert

www.cve.org

AI Score

7.9

Confidence

Low

EPSS

0.002

Percentile

58.6%

JSON

SQL injection vulnerability in the Space function in Cybozu Garoon before 3.7 SP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

cs.cybozu.co.jp/information/20131202up01.php

jvn.jp/en/jp/JVN82375148/index.html

jvndb.jvn.jp/jvndb/JVNDB-2013-000114

products.cybozu.co.jp/garoon/download/update/gr3/fix371sp1.html

support.cybozu.com/ja-jp/article/6955