Lucene search
K

6 matches found

altlinux
altlinux
added 2022/11/04 12:0 a.m.145 views

Security fix for the ALT Linux 9 package glpi version 9.5.10-alt1

Nov. 4, 2022 Pavel Zilke 9.5.10-alt1 - New version 9.5.10 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2022-39276 : Blind SSRF in RSS feeds and planning + CVE-2022-39372 : Stored XSS in user information +...

6.4AI score0.34251EPSS
Exploits3
circl
circl
added 2022/11/03 5:20 p.m.4 views

CVE-2022-39234

creationtimestamp| type| source ---|---|--- 2022-11-03 17:20:39+00:00| seen| https://t.me/cibsecurity/52505...

8.8CVSS8.4AI score0.00385EPSS
Exploits0References1
nvd
nvd
added 2022/11/03 2:15 p.m.34 views

CVE-2022-39234

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Deleted/deactivated user could continue to use their account as long as its cookie is valid. This iss...

8.8CVSS0.00385EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2022/11/03 2:15 p.m.27 views

CVE-2022-39234

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Deleted/deactivated user could continue to use their account as long as its cookie is valid. This iss...

8.8CVSS7AI score0.00385EPSS
Exploits0References2
cve
cve
added 2022/11/03 12:0 a.m.66 views

CVE-2022-39234

GLPI (Gestionnaire Libre de Parc Informatique) is affected by CVE-2022-39234: a deleted or deactivated user may continue to use their account while a valid session cookie exists. The remediation is to upgrade to GLPI 10.0.4 or later; no workaround is documented in the provided sources.

8.8CVSS6.4AI score0.00385EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/11/03 12:0 a.m.35 views

CVE-2022-39234 user session persists even after permanently deleting account in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Deleted/deactivated user could continue to use their account as long as its cookie is valid. This iss...

4.7CVSS8.9AI score0.00385EPSS
Exploits0References1
Rows per page
Query Builder