Itop Security Vulnerabilities and Issues — Itop CVE List

Lucene search

CombodoItop

5 matches found

CVE•added 2020/08/10 3:15 a.m.•54 views

CVE-2020-12777

A function in Combodo iTop contains a vulnerability of Broken Access Control, which allows unauthorized attacker to inject command and disclose system information.

7.5CVSS7.5AI score0.00316EPSS

CVE•added 2020/08/10 3:15 a.m.•47 views

CVE-2020-12780

A security misconfiguration exists in Combodo iTop, which can expose sensitive information.

7.5CVSS7.5AI score0.0028EPSS

CVE•added 2020/08/10 3:15 a.m.•44 views

CVE-2020-12778

Combodo iTop does not validate inputted parameters, attackers can inject malicious commands and launch XSS attack.

7.4CVSS6.4AI score0.00311EPSS

CVE•added 2020/08/10 3:15 a.m.•44 views

CVE-2020-12781

Combodo iTop contains a cross-site request forgery (CSRF) vulnerability, attackers can execute specific commands via malicious site request forgery.

8.8CVSS7.3AI score0.00131EPSS

CVE•added 2020/08/10 3:15 a.m.•39 views

CVE-2020-12779

Combodo iTop contains a stored Cross-site Scripting vulnerability, which can be attacked by uploading file with malicious script.

6.8CVSS5.5AI score0.00282EPSS