Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-35947

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licens...

10CVSS8.5AI score0.00945EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2022/09/23 12:0 a.m.36 views

Security fix for the ALT Linux 9 package glpi version 9.5.9-alt1

9.5.9-alt1 built Sept. 23, 2022 Pavel Zilke in task 307140 Sept. 14, 2022 Pavel Zilke - New version 9.5.9 - This release fixes several critical security issues that has been recently discovered. Update is strongly recommended! - Security fixes: + CVE-2022-35945 : XSS through registration API +...

8.6AI score0.99628EPSS
Exploits13
ALT Linux
ALT Linux
added 2022/09/16 12:0 a.m.117 views

Security fix for the ALT Linux 10 package glpi version 9.5.9-alt1

9.5.9-alt1 built Sept. 16, 2022 Pavel Zilke in task 306811 Sept. 14, 2022 Pavel Zilke - New version 9.5.9 - This release fixes several critical security issues that has been recently discovered. Update is strongly recommended! - Security fixes: + CVE-2022-35945 : XSS through registration API +...

8.6AI score0.99628EPSS
Exploits13
Cvelist
Cvelist
added 2022/09/14 5:50 p.m.29 views

CVE-2022-35947 SQL injection in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions have been found to be vulnerable to a SQL injection attack which an attacker could...

10CVSS10AI score0.00945EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/14 5:50 p.m.9 views

CVE-2022-35947 SQL injection in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions have been found to be vulnerable to a SQL injection attack which an attacker could...

10CVSS9.9AI score0.00945EPSS
Exploits0References2
CVE
CVE
added 2022/09/14 5:50 p.m.279 views

CVE-2022-35947

CVE-2022-35947 affects GLPI (Gestionnaire Libre de Parc Informatique). Affected versions have a SQL injection vulnerability that could allow an attacker to simulate an arbitrary user login. The advisory explicitly recommends upgrading to version 10.0.3 . As a workaround if upgrading isn’t possibl...

10CVSS9.9AI score0.00945EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder