CVE-2021-20670

Summary

Improper access control vulnerability in GROWI versions v4.2.2 and earlier allows a remote unauthenticated attacker to read the user's personal information and/or server's internal information via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
WESEEK, Inc.GROWIversions v4.2.2 and earlieraffected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References