CVE-2022-39372

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-39372
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-39372.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-39372
Aliases
  • GHSA-5rj7-95qc-89h2
Published
2022-11-03T16:15:10Z
Modified
2024-05-29T21:34:56Z
Severity
  • 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their account information. This issue has been patched, please upgrade to version 10.0.4. There are currently no known workarounds.

References

Affected packages

Git / github.com/glpi-project/glpi

Affected ranges

Type
GIT
Repo
https://github.com/glpi-project/glpi
Events