Lucene search

[email protected]CVE-2013-2225

HistoryMay 27, 2014 - 3:00 p.m.

CVE-2013-2225

2014-05-2715:00:00

[email protected]

web.nvd.nist.gov

cve-2013-2225

glpi

remote code execution

unserialize

php

nvd

7.4 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.174 Low

EPSS

Percentile

96.1%

JSON

inc/ticket.class.php in GLPI 0.83.9 and earlier allows remote attackers to unserialize arbitrary PHP objects via the _predefined_fields parameter to front/ticket.form.php.

Affected configurations

NVD

Node

glpi-projectglpiRange≤0.83.9

glpi-projectglpiMatch0.5

glpi-projectglpiMatch0.5rc1

glpi-projectglpiMatch0.5rc2

glpi-projectglpiMatch0.6

glpi-projectglpiMatch0.6rc1

glpi-projectglpiMatch0.6rc2

glpi-projectglpiMatch0.6rc3

glpi-projectglpiMatch0.20

glpi-projectglpiMatch0.21

glpi-projectglpiMatch0.30

glpi-projectglpiMatch0.31

glpi-projectglpiMatch0.40

glpi-projectglpiMatch0.41

glpi-projectglpiMatch0.42

glpi-projectglpiMatch0.51

glpi-projectglpiMatch0.51a

glpi-projectglpiMatch0.65

glpi-projectglpiMatch0.65rc1

glpi-projectglpiMatch0.65rc2

glpi-projectglpiMatch0.68

glpi-projectglpiMatch0.68rc1

glpi-projectglpiMatch0.68rc2

glpi-projectglpiMatch0.68rc3

glpi-projectglpiMatch0.68.1

glpi-projectglpiMatch0.68.2

glpi-projectglpiMatch0.68.3

glpi-projectglpiMatch0.70

glpi-projectglpiMatch0.70rc1

glpi-projectglpiMatch0.70rc2

glpi-projectglpiMatch0.70rc3

glpi-projectglpiMatch0.70.1

glpi-projectglpiMatch0.70.2

glpi-projectglpiMatch0.71

glpi-projectglpiMatch0.71.1

glpi-projectglpiMatch0.71.1rc1

glpi-projectglpiMatch0.71.1rc2

glpi-projectglpiMatch0.71.1rc3

glpi-projectglpiMatch0.71.2

glpi-projectglpiMatch0.71.3

glpi-projectglpiMatch0.71.4

glpi-projectglpiMatch0.71.5

glpi-projectglpiMatch0.71.6

glpi-projectglpiMatch0.72

glpi-projectglpiMatch0.72rc1

glpi-projectglpiMatch0.72rc2

glpi-projectglpiMatch0.72rc3

glpi-projectglpiMatch0.72.1

glpi-projectglpiMatch0.72.2

glpi-projectglpiMatch0.72.3

glpi-projectglpiMatch0.72.4

glpi-projectglpiMatch0.78

glpi-projectglpiMatch0.78.1

glpi-projectglpiMatch0.78.2

glpi-projectglpiMatch0.78.3

glpi-projectglpiMatch0.78.4

glpi-projectglpiMatch0.78.5

glpi-projectglpiMatch0.80

glpi-projectglpiMatch0.80.1

glpi-projectglpiMatch0.80.2

glpi-projectglpiMatch0.80.3

glpi-projectglpiMatch0.80.4

glpi-projectglpiMatch0.80.5

glpi-projectglpiMatch0.80.6

glpi-projectglpiMatch0.80.7

glpi-projectglpiMatch0.80.61

glpi-projectglpiMatch0.83

glpi-projectglpiMatch0.83.1

glpi-projectglpiMatch0.83.2

glpi-projectglpiMatch0.83.3

glpi-projectglpiMatch0.83.4

glpi-projectglpiMatch0.83.5

glpi-projectglpiMatch0.83.6

glpi-projectglpiMatch0.83.7

glpi-projectglpiMatch0.83.8

glpi-projectglpiMatch0.83.31

CPENameOperatorVersion
glpi-project:glpiglpi-project glpile0.83.9
glpi-project:glpiglpi-project glpieq0.5
glpi-project:glpiglpi-project glpieq0.6
glpi-project:glpiglpi-project glpieq0.20
glpi-project:glpiglpi-project glpieq0.21
glpi-project:glpiglpi-project glpieq0.30
glpi-project:glpiglpi-project glpieq0.31
glpi-project:glpiglpi-project glpieq0.40
glpi-project:glpiglpi-project glpieq0.41
glpi-project:glpiglpi-project glpieq0.42

CPE	Name	Operator	Version
glpi-project:glpi	glpi-project glpi	le	0.83.9
glpi-project:glpi	glpi-project glpi	eq	0.5
glpi-project:glpi	glpi-project glpi	eq	0.6
glpi-project:glpi	glpi-project glpi	eq	0.20
glpi-project:glpi	glpi-project glpi	eq	0.21
glpi-project:glpi	glpi-project glpi	eq	0.30
glpi-project:glpi	glpi-project glpi	eq	0.31
glpi-project:glpi	glpi-project glpi	eq	0.40
glpi-project:glpi	glpi-project glpi	eq	0.41
glpi-project:glpi	glpi-project glpi	eq	0.42