Lucene search
K

4 matches found

Prion
Prion
added 2023/07/05 8:15 p.m.25 views

Design/Logic Flaw

GLPI is a free asset and IT management software package. Versions of the software starting with 9.2.0 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user, allows access to the view all KnowbaseItems. Version 10.0.8 has a patch for this issue...

4CVSS6.4AI score0.0057EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/05 7:15 p.m.18 views

CVE-2023-34107 GLPI vulnerable to unauthorized access to KnowbaseItem data

GLPI is a free asset and IT management software package. Versions of the software starting with 9.2.0 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user, allows access to the view all KnowbaseItems. Version 10.0.8 has a patch for this issue...

6.5CVSS6.3AI score0.0057EPSS
Exploits0References4
Prion
Prion
added 2023/07/05 6:15 p.m.19 views

Design/Logic Flaw

GLPI is a free asset and IT management software package. Versions of the software starting with 0.68 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user. This allows access to the list of all users and their personal information. Users should...

4CVSS6.5AI score0.0057EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/05 5:48 p.m.24 views

CVE-2023-34106 GLPI vulnerable to unauthorized access to User data

GLPI is a free asset and IT management software package. Versions of the software starting with 0.68 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user. This allows access to the list of all users and their personal information. Users should...

6.5CVSS6.3AI score0.0057EPSS
Exploits0References4
Rows per page
Query Builder