exploitDog

CVE-2024-52001

Опубликовано: 08 нояб. 2024

Источник: nvd

CVSS3: 4.3

CVSS3: 4.3

EPSS Низкий

Описание

Combodo iTop is a simple, web based IT Service Management tool. In affected versions portal users are able to access forbidden services information. This issue has been addressed in version 3.2.0. All users are advised to upgrade. There are no known workarounds for this vulnerability.

Ссылки

https://github.com/Combodo/iTop/security/advisories/GHSA-9p26-v3wj-6q34
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:combodo:itop:*:*:*:*:*:*:*:*

Версия до 3.2.0 (исключая)

EPSS

Процентиль: 58%

0.00364

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo

EPSS

Процентиль: 58%

0.00364

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo