Home

Description

Improper input verification issue exists in Cybozu Garoon 5.0.0 to 6.0.3, which may lead to unauthorized alteration of portal settings, potentially blocking access to the product.

PUBLISHED Reserved 2026-01-27 | Published 2026-02-02 | Updated 2026-02-02 | Assigner jpcert




MEDIUM: 4.9CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

Improper handling of extra values

Product status

5.0.0 to 6.0.3
affected

References

kb.cybozu.support/article/39083/

jvn.jp/en/jp/JVN35265756/

cve.org (CVE-2026-22888)

nvd.nist.gov (CVE-2026-22888)

Download JSON