CVE-2024-31404

Summary

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.5.0 to 6.0.0, which may allow a user who can log in to the product to view the data of Scheduler.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Garoon5.5.0 to 6.0.0affected

Weaknesses

  • Insertion of Sensitive Information Into Sent Data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References