CVE-2017-2258

CVE-2017-2258

EPSS 1.3%

Directory traversal vulnerability in Cybozu Garoon 4.2.4 to 4.2.5 allows an attacker to read arbitrary files via Garoon SOAP API "WorkflowHandleApplications".

Affected products

Cybozu, Inc. · Cybozu Garoon

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/jp/JVN63564682/index.html https://support.cybozu.com/ja-jp/article/9846