5 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-34107
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Versions of the software starting with 9.2.0 and prior to 10.0.8 have an incorrect rights check on a on...
CVE-2023-34107
creationtimestamp| type| source ---|---|--- 2023-07-06 00:27:33+00:00| seen| https://t.me/cibsecurity/66029...
CVE-2023-34107
GLPI is a free asset and IT management software package. Versions of the software starting with 9.2.0 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user, allows access to the view all KnowbaseItems. Version 10.0.8 has a patch for this issue...
CVE-2023-34107
GLPI CVE-2023-34107 affects GLPI versions 9.2.0 up to, but not including, 10.0.8, where an incorrect rights check on a file accessible by an authenticated user allows viewing all KnowbaseItems. The issue is rooted in insufficient access control for a file/resource; the vendor issued a patch in ve...
CVE-2023-34107 GLPI vulnerable to unauthorized access to KnowbaseItem data
GLPI is a free asset and IT management software package. Versions of the software starting with 9.2.0 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user, allows access to the view all KnowbaseItems. Version 10.0.8 has a patch for this issue...