CVE-2019-10231

Опубликовано: 27 мар. 2019

Источник: ubuntu

Приоритет: negligible

CVSS2: 7.5

CVSS3: 9.8

Описание

Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication. This occurs in Auth::checkPassword() (inc/auth.class.php).

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/xenial	needed
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE
impish	DNE
jammy	DNE

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2019-10231

CVSS3: 9.8

nvd

почти 7 лет назад

Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication. This occurs in Auth::checkPassword() (inc/auth.class.php).

CVE-2019-10231

CVSS3: 9.8

debian

почти 7 лет назад

Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerab ...

GHSA-rqpr-xfvf-qr4v

CVSS3: 9.8

github

больше 3 лет назад

Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication. This occurs in Auth::checkPassword() (inc/auth.class.php).

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2019-10231

Описание

Пакет glpi

Ссылки на источники

Связанные уязвимости