Known Vulnerabilities for Garoon by Cybozu

Listed below are 10 of the newest known vulnerabilities associated with "Garoon" by "Cybozu".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-20762 Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated to alter the ... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20761 Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote attacker with an administra... 2.7 - LOW 2021-08-18 2021-08-24
CVE-2021-20760 Improper input validation vulnerability in User Profile of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacke... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20759 Operational restrictions bypass vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attac... 4.3 - MEDIUM 2021-08-18 2022-06-28
CVE-2021-20758 Cross-site request forgery (CSRF) vulnerability in Message of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated atta... 8 - HIGH 2021-08-18 2021-08-24
CVE-2021-20757 Operational restrictions bypass vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacke... 4.3 - MEDIUM 2021-08-18 2022-06-28
CVE-2021-20756 Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker t... 4.3 - MEDIUM 2021-08-18 2022-07-12
CVE-2021-20755 Viewing restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to... 4.3 - MEDIUM 2021-08-18 2022-07-12
CVE-2021-20754 Improper input validation vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to... 4.3 - MEDIUM 2021-08-18 2021-08-24
CVE-2021-20753 Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to inj... 5.4 - MEDIUM 2021-08-18 2021-08-24
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationCybozuGaroon5.0.2AllAllAll
ApplicationCybozuGaroon5.0.1AllAllAll
ApplicationCybozuGaroon5.0.0AllAllAll
ApplicationCybozuGaroon4.6.3AllAllAll
ApplicationCybozuGaroon4.6.2AllAllAll
ApplicationCybozuGaroon4.6.1AllAllAll
ApplicationCybozuGaroon4.6.0AllAllAll
ApplicationCybozuGaroon4.2.6AllAllAll
ApplicationCybozuGaroon4.2.5AllAllAll
ApplicationCybozuGaroon4.2.4AllAllAll
ApplicationCybozuGaroon4.2.3AllAllAll
ApplicationCybozuGaroon4.2.2AllAllAll
ApplicationCybozuGaroon4.2.1AllAllAll
ApplicationCybozuGaroon4.2.0AllAllAll
ApplicationCybozuGaroon4.10.3AllAllAll
ApplicationCybozuGaroon4.10.2AllAllAll
ApplicationCybozuGaroon4.10.1AllAllAll
ApplicationCybozuGaroon4.10.0AllAllAll
ApplicationCybozuGaroon4.10AllAllAll
ApplicationCybozuGaroon4.0.3AllAllAll
Results limited to 20 most recent known configurations
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report