CVE-2008-6440
Cerberus Helpdesk < 3.3 - Authentication Bypass
Title source: ruleDescription
Cerberus Helpdesk before 4.0 (Build 600) allows remote attackers to obtain sensitive information via direct requests for "controllers ... that aren't standard helpdesk pages," possibly involving the (1) /display and (2) /kb URIs.
Scores
EPSS
0.0028
EPSS Percentile
51.3%
Classification
CWE
CWE-287
Status
draft
Affected Products (14)
cerberus/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
< 3.3
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
webgroupmedia/cerberus_helpdesk
Timeline
Published
Mar 06, 2009
Tracked Since
Feb 18, 2026