Lucene search

CVE-2024-37149

🗓️ 10 Jul 2024 20:03:15Reported by [email protected]Type

GLPI software allows authenticated technician to upload malicious PHP script and execute it through plugin loader. Upgrade to version 10.0.16

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2024-37149 GLPI allows remote code execution through the plugin loader	10 Jul 202419:20	–	cvelist
OSV	UBUNTU-CVE-2024-37149	10 Jul 202420:15	–	osv
OSV	CVE-2024-37149	10 Jul 202420:15	–	osv
CVE	CVE-2024-37149	10 Jul 202420:15	–	cve
Vulnrichment	CVE-2024-37149 GLPI allows remote code execution through the plugin loader	10 Jul 202419:20	–	vulnrichment
UbuntuCve	CVE-2024-37149	10 Jul 202400:00	–	ubuntucve
FreeBSD	GLPI -- multiple vulnerabilities	3 Jun 202400:00	–	freebsd
Redos	ROS-20240827-09	27 Aug 202400:00	–	redos

Nvd

Node

glpi-project glpiRange0.85–10.0.16

Source	Link
github	www.github.com/glpi-project/glpi/security/advisories/GHSA-cwvp-j887-m4xh

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jul 2024 20:15Current

CVSS38.8

EPSS0.0008