3 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-22500
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package. Versions 10.0.0 and above, prior to 10.0.6 are vulnerable to Incorrect Authorization. This vulnerabilit...
CVE-2023-22500 glpi Unauthorized access to inventory files
GLPI is a Free Asset and IT Management Software package. Versions 10.0.0 and above, prior to 10.0.6 are vulnerable to Incorrect Authorization. This vulnerability allow unauthorized access to inventory files. Thus, if anonymous access to FAQ is allowed, inventory files are accessbile by...
CVE-2023-22500
GLPI CVE-2023-22500 affects GLPI 10.0.0 through 10.0.5, where an Incorrect Authorization flaw allows unauthorized access to inventory files if anonymous FAQ access is enabled. Impact is exposure of inventory data (confidentiality) without privilege escalation details beyond that. The issue is fix...