Lucene search
Japan Vulnerability NotesJVN:42024228HistoryJul 15, 2014 - 12:00 a.m.
JVN#42024228: Cybozu Garoon CGI vulnerable to remote command execution
2014-07-1500:00:00
Japan Vulnerability Notes
jvn.jp
24
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.006
Percentile
77.9%
Cybozu Garoon provided by Cybozu, Inc. is a groupware. Cybozu Garoon CGI contains a remote command execution vulnerability.
Impact
An arbitrary command may be executed on the server where Cybozu Garoon resides.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- Cybozu Garoon 3.1.0 to 3.7 Service Pack 3
Related
cvelist
cvelist
CVE-2014-1987
2014-07-20 10:00:00
prion
prion
Design/Logic Flaw
2014-07-20 11:12:00
nvd
nvd
CVE-2014-1987
2014-07-20 11:12:49
cve
cve
CVE-2014-1987
2014-07-20 11:12:49
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.006
Percentile
77.9%
Related for JVN:42024228