Lucene search
JpcertCVE-2013-6006HistoryDec 28, 2013 - 4:53 a.m.
CVE-2013-6006
2013-12-2804:53:06
CWE-287
jpcert
web.nvd.nist.gov
22
cybozu garoon
keitai authentication
cve-2013-6006
security vulnerability
nvd
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
7
Confidence
Low
EPSS
0.003
Percentile
68.2%
Cybozu Garoon 3.5 through 3.7 SP2 allows remote attackers to bypass Keitai authentication via a modified user ID in a request.
Affected configurations
Node
cybozugaroonMatch3.5
ORcybozugaroonMatch3.5sp1
ORcybozugaroonMatch3.5sp2
ORcybozugaroonMatch3.5sp3
ORcybozugaroonMatch3.5sp4
ORcybozugaroonMatch3.5sp5
ORcybozugaroonMatch3.5.3
ORcybozugaroonMatch3.7
ORcybozugaroonMatch3.7sp1
ORcybozugaroonMatch3.7sp2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:*:*:*:*:*:*:* |
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:sp1:*:*:*:*:*:* |
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:sp2:*:*:*:*:*:* |
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:sp3:*:*:*:*:*:* |
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:sp4:*:*:*:*:*:* |
| cybozu | garoon | 3.5 | cpe:2.3:a:cybozu:garoon:3.5:sp5:*:*:*:*:*:* |
| cybozu | garoon | 3.5.3 | cpe:2.3:a:cybozu:garoon:3.5.3:*:*:*:*:*:*:* |
| cybozu | garoon | 3.7 | cpe:2.3:a:cybozu:garoon:3.7:*:*:*:*:*:*:* |
| cybozu | garoon | 3.7 | cpe:2.3:a:cybozu:garoon:3.7:sp1:*:*:*:*:*:* |
| cybozu | garoon | 3.7 | cpe:2.3:a:cybozu:garoon:3.7:sp2:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2013-12-28 04:53:00
seebug
seebug
Cybozu Garoon Keitaiιͺθ―η»θΏζΌζ΄
2013-12-30 00:00:00
nvd
nvd
CVE-2013-6006
2013-12-28 04:53:06
cvelist
cvelist
CVE-2013-6006
2013-12-28 02:00:00
jvn
jvn
JVN#81706478: Cybozu Garoon Keitai vulnerable to authentication bypass
2013-12-25 00:00:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
7
Confidence
Low
EPSS
0.003
Percentile
68.2%
Related for CVE-2013-6006