[Japanese]

JVNDB-2020-000042

Multiple vulnerabilities in Cybozu Garoon

Overview

Cybozu, Inc. has released security updates for Cybozu Garoon.

* [CyVDB-2083] Vulnerability in Single sign-on settings to avoid viewing and operation privileges - CVE-2020-5580
* [CyVDB-2451] Path traversal vulnerability on the portal - CVE-2020-5581
* [CyVDB-2097] Vulnerability to bypass operation privileges on attachments - CVE-2020-5582
* [CyVDB-2289] Vulnerability in the Multi-Report to bypass view privileges - CVE-2020-5583
* [CyVDB-2305] Vulnerability to token-related information leakage - CVE-2020-5584
* [CyVDB-2308] Cross-site scripting vulnerability related to image asset functionality - CVE-2020-5585
* [CyVDB-2309] Cross-site scripting vulnerability in system configuration - CVE-2020-5586
* [CyVDB-2361] Vulnerability to token-related information leakage - CVE-2020-5587
* [CyVDB-2450] Path traversal vulnerability on the portal - CVE-2020-5588


Kanta Nishitani reported CVE-2020-5580 and CVE-2020-5584 vulnerabilities to Cybozu, Inc., and Cybozu, Inc. reported them to JPCERT/CC to notify users of the solutions through JVN.

Tanghaifeng reported CVE-2020-5582 and CVE-2020-5583 vulnerabilities to Cybozu, Inc., and Cybozu, Inc. reported them to JPCERT/CC to notify users of the solutions through JVN.

Yuji Tounai reported CVE-2020-5587 vulnerability to Cybozu, Inc., and Cybozu, Inc. reported it to JPCERT/CC to notify users of its solution through JVN.

Cybozu, Inc. reported CVE-2020-5581, CVE-2020-5585, CVE-2020-5586 and CVE-2020-5588 vulnerabilities to JPCERT/CC to notify users of the solution through JVN.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 8.5 (High) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: Low
  • User Interaction: None
  • Scope: Changed
  • Confidentiality Impact: High
  • Integrity Impact: Low
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics 5.5 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single Instance
  • Confidentiality Impact: Partial
  • Integrity Impact: Partial
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5580


CVSS V3 Severity:
Base Metrics: 7.7 (High) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: Low
  • User Interaction: None
  • Scope: Changed
  • Confidentiality Impact: High
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 5.0 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5581


CVSS V3 Severity:
Base Metrics: 4.3 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: Low
  • User Interaction: None
  • Scope: Unchanged
  • Confidentiality Impact: None
  • Integrity Impact: Low
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 4.0 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single
  • Confidentiality Impact: None
  • Integrity Impact: Partial
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5582


CVSS V3 Severity:
Base Metrics: 4.3 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: Low
  • User Interaction: None
  • Scope: Unchanged
  • Confidentiality Impact: Low
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 4.0 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5583


CVSS V3 Severity:
Base Metrics: 6.5 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: Required
  • Scope: Unchanged
  • Confidentiality Impact: High
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 5.0 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5584


CVSS V3 Severity:
Base Metrics: 4.8 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: High
  • User Interaction: Required
  • Scope: Changed
  • Confidentiality Impact: Low
  • Integrity Impact: Low
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 5.5 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single
  • Confidentiality Impact: Partial
  • Integrity Impact: Partial
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5585


CVSS V3 Severity:
Base Metrics: 4.8 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: High
  • User Interaction: Required
  • Scope: Changed
  • Confidentiality Impact: Low
  • Integrity Impact: Low
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 4.0 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single
  • Confidentiality Impact: None
  • Integrity Impact: Partial
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5586


CVSS V3 Severity:
Base Metrics: 5.3 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: High
  • Privileges Required: None
  • User Interaction: Required
  • Scope: Unchanged
  • Confidentiality Impact: High
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 2.6 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: High
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5587


CVSS V3 Severity:
Base Metrics: 6.8 (Medium) [IPA Score]
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: High
  • User Interaction: None
  • Scope: Changed
  • Confidentiality Impact: High
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics: 4.0 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: Single
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2020-5588
Affected Products


Cybozu, Inc.
  • Cybozu Garoon 4.0.0 to 5.0.1 [CyVDB-2083], [CyVDB-2451], [CyVDB-2097], [CyVDB-2289], [CyVDB-2305], [CyVDB-2361]
  • Cybozu Garoon 5.0.0 to 5.0.1 [CyVDB-2308], [CyVDB-2450]
  • Cybozu Garoon 4.10.3 to 5.0.1 [CyVDB-2309]

Impact

[CyVDB-2083]:
A user may view and/or alter Single sign-on settings.
[CyVDB-2451]:
A user may obtain unintended information.
[CyVDB-2097]:
A user may alter the data for the file attached to Report.
[CyVDB-2289]:
A user may obtain Multi-Report's data which the user has no viewing privileges of.
[CyVDB-2305] and [CyVDB-2361]:
A remote attacker may obtain unintended information.
[CyVDB-2308] and [CyVDB-2309]:
An arbitrary script may be executed on the web browser of the user who logged in to the product with the administrative privilege.
[CyVDB-2450]:
A user with administrative privilege may obtain unintended information.
Solution

[Update the Software]
Update the affected software to the appropriate latest version according to the information provided by the developer.
Vendor Information

Cybozu, Inc.
CWE (What is CWE?)

  1. Information Exposure(CWE-200) [IPA Evaluation]
  2. Path Traversal(CWE-22) [IPA Evaluation]
  3. Permissions(CWE-264) [IPA Evaluation]
  4. Cross-site Scripting(CWE-79) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2020-5580
  2. CVE-2020-5581
  3. CVE-2020-5582
  4. CVE-2020-5583
  5. CVE-2020-5584
  6. CVE-2020-5585
  7. CVE-2020-5586
  8. CVE-2020-5587
  9. CVE-2020-5588
References

  1. JVN : JVN#55497111
  2. National Vulnerability Database (NVD) : CVE-2020-5580
  3. National Vulnerability Database (NVD) : CVE-2020-5581
  4. National Vulnerability Database (NVD) : CVE-2020-5582
  5. National Vulnerability Database (NVD) : CVE-2020-5583
  6. National Vulnerability Database (NVD) : CVE-2020-5584
  7. National Vulnerability Database (NVD) : CVE-2020-5585
  8. National Vulnerability Database (NVD) : CVE-2020-5586
  9. National Vulnerability Database (NVD) : CVE-2020-5587
  10. National Vulnerability Database (NVD) : CVE-2020-5588
Revision History

  • [2020/06/29]
      Web page was published