CVE-2008-6569

Cybozu Garoon - Authentication Bypass

Title source: rule

Description

Session fixation vulnerability in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack web sessions via the session ID in the login page.

References (8)

Scores

EPSS 0.0087
EPSS Percentile 75.0%

Classification

CWE
CWE-287
Status draft

Affected Products (11)

cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon
cybozu/garoon

Timeline

Published Mar 31, 2009
Tracked Since Feb 18, 2026