Snipe-IT is an open source IT asset/license management system. snipe-it versions prior to 5.3.11 contain an elevation of privilege vulnerability that stems from improper privilege management in the software. An attacker could exploit the vulnerability to cause a non-privileged user to create maintenance for any asset.