CVE-2026-22888
Unknown
Unknown - Not Provided
Improper Input Validation in Cybozu Garoon Allows Portal Tampering
Publication date: 2026-02-02
Last updated on: 2026-02-19
Assigner: JPCERT/CC
Description
Description
Improper input verification issue exists in Cybozu Garoon 5.0.0 to 6.0.3, which may lead to unauthorized alteration of portal settings, potentially blocking access to the product.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cybozu | garoon | From 5.0.0 (inc) to 6.0.3 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-231 | The product does not handle or incorrectly handles when more values are provided than expected. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an improper input verification issue in Cybozu Garoon versions 5.0.0 to 6.0.3. It may allow an attacker to alter portal settings without authorization, which could potentially block access to the product.
How can this vulnerability impact me? :
The vulnerability can impact you by allowing unauthorized changes to portal settings, which may result in loss of access to the Cybozu Garoon product, disrupting normal operations.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70