The FusionInventory plugin before 1.4 for GLPI 9.3.x and before 1.1 for GLPI 9.4.x mishandles sendXML actions.
References
Link | Resource |
---|---|
https://github.com/fusioninventory/fusioninventory-for-glpi/commit/0f777f85773b18f5252e79afa1929fcdc4858c3a | Patch Third Party Advisory |
https://github.com/fusioninventory/fusioninventory-for-glpi/compare/260a864...e1f776d | Patch Third Party Advisory |
https://github.com/fusioninventory/fusioninventory-for-glpi/compare/cec774a...baa4158 | Patch Third Party Advisory |
https://github.com/fusioninventory/fusioninventory-for-glpi/releases/tag/glpi9.3%2B1.4 | Product Third Party Advisory |
https://github.com/fusioninventory/fusioninventory-for-glpi/releases/tag/glpi9.4%2B1.1 | Product Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-03-29 14:29
Updated : 2024-02-04 20:20
NVD link : CVE-2019-10477
Mitre link : CVE-2019-10477
CVE.ORG link : CVE-2019-10477
JSON object : View
Products Affected
fusioninventory
- fusioninventory
glpi-project
- glpi
CWE
CWE-19
Data Processing Errors