GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. An API user that have read access on users resource can steal accounts of other users. Users are advised to upgrade to version 10.0.10. There are no known workarounds for this vulnerability.
History

Mon, 23 Sep 2024 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-09-26T22:37:35.982Z

Updated: 2024-09-23T20:16:20.318Z

Reserved: 2023-08-28T16:56:43.366Z

Link: CVE-2023-41324

cve-icon Vulnrichment

Updated: 2024-08-02T19:01:34.244Z

cve-icon NVD

Status : Modified

Published: 2023-09-27T15:19:29.797

Modified: 2024-11-21T08:21:04.477

Link: CVE-2023-41324

cve-icon Redhat

No data.