CVE-2026-22888 Garoon 5.06.0 Portal Settings Input Validation Bypass
CVE-2026-22888 Published on February 2, 2026
Improper input verification issue exists in Cybozu Garoon 5.0.0 to 6.0.3, which may lead to unauthorized alteration of portal settings, potentially blocking access to the product.
Weakness Type
Improper Handling of Extra Values
The software does not handle or incorrectly handles when more values are provided than expected.
Products Associated with CVE-2026-22888
Want to know whenever a new CVE is published for Cybozu Garoon? stack.watch will email you.
Affected Versions
Cybozu, Inc. Cybozu Garoon Version 5.0.0 to 6.0.3 is affected by CVE-2026-22888Exploit Probability
EPSS
0.02%
Percentile
3.58%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.