← back
CVE-2021-20768

CVE-2021-20768

EPSS 0.8%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
18 Aug 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Operational restrictions bypass vulnerability in Scheduler and MultiReport of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to delete the data of Scheduler and MultiReport without the appropriate privilege.
Affected products
Cybozu, Inc. · Cybozu Garoon

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cs.cybozu.co.jp/2021/007206.htmlhttps://jvn.jp/en/jp/JVN54794245/index.html