Itop@3.0.0 Security Vulnerabilities and Issues — Itop@3.0.0 CVE List

Lucene search

CombodoItop3.0.0

3 matches found

CVE•added 2020/08/10 3:15 a.m.•53 views

CVE-2020-12777

A function in Combodo iTop contains a vulnerability of Broken Access Control, which allows unauthorized attacker to inject command and disclose system information.

7.5CVSS7.5AI score0.00316EPSS

CVE•added 2020/08/10 3:15 a.m.•44 views

CVE-2020-12778

Combodo iTop does not validate inputted parameters, attackers can inject malicious commands and launch XSS attack.

7.4CVSS6.4AI score0.00311EPSS

CVE•added 2020/08/10 3:15 a.m.•44 views

CVE-2020-12781

Combodo iTop contains a cross-site request forgery (CSRF) vulnerability, attackers can execute specific commands via malicious site request forgery.

8.8CVSS7.3AI score0.00131EPSS