Описание
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| esm-apps/xenial | not-affected | 0.84.8+dfsg.1-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
Показывать по
10
EPSS
Процентиль: 59%
0.00388
Низкий
5 Medium
CVSS2
Связанные уязвимости
nvd
почти 11 лет назад
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
debian
почти 11 лет назад
GLPI before 0.84.7 does not properly restrict access to cost informati ...
github
больше 3 лет назад
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
EPSS
Процентиль: 59%
0.00388
Низкий
5 Medium
CVSS2