CVE-2022-29250

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to version 10.0.1 it is possible to add extra information by SQL injection on search pages. In order to exploit this vulnerability a user must be logged in.

CVSS v3 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:P/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://github.com/glpi-project/glpi/security/advisories/GHSA-5w33-4wrx-8hvw	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:glpi-project:glpi:10.0.0:-::::::
	cpe:2.3:a:glpi-project:glpi:10.0.0:beta::::::
	cpe:2.3:a:glpi-project:glpi:10.0.0:rc1::::::
	cpe:2.3:a:glpi-project:glpi:10.0.0:rc2::::::
	cpe:2.3:a:glpi-project:glpi:10.0.0:rc3::::::

History

16 Jun 2022, 19:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 4.0 v3 : 6.5
CPE		cpe:2.3:a:glpi-project:glpi:10.0.0:rc1:::::: cpe:2.3:a:glpi-project:glpi:10.0.0:rc3:::::: cpe:2.3:a:glpi-project:glpi:10.0.0:-:::::: cpe:2.3:a:glpi-project:glpi:10.0.0:rc2:::::: cpe:2.3:a:glpi-project:glpi:10.0.0:beta::::::
References	~~(CONFIRM) https://github.com/glpi-project/glpi/security/advisories/GHSA-5w33-4wrx-8hvw -~~	(CONFIRM) https://github.com/glpi-project/glpi/security/advisories/GHSA-5w33-4wrx-8hvw - Third Party Advisory

09 Jun 2022, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-06-09 20:15

Updated : 2024-02-04 22:29

NVD link : CVE-2022-29250

Mitre link : CVE-2022-29250

CVE.ORG link : CVE-2022-29250

JSON object : View

Products Affected

glpi-project

glpi

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2022-29250", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 2.8}]}, "published": "2022-06-09T20:15:08.267", "references": [{"url": "https://github.com/glpi-project/glpi/security/advisories/GHSA-5w33-4wrx-8hvw", "tags": ["Third Party Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to version 10.0.1 it is possible to add extra information by SQL injection on search pages. In order to exploit this vulnerability a user must be logged in."}, {"lang": "es", "value": "GLPI es un paquete de software gratuito de administraci\u00f3n de activos y TI que ofrece funciones de Service Desk de ITIL, seguimiento de licencias y auditor\u00eda de software. En versiones anteriores a 10.0.1, es posible a\u00f1adir informaci\u00f3n extra mediante inyecci\u00f3n SQL en las p\u00e1ginas de b\u00fasqueda. Para explotar esta vulnerabilidad un usuario debe estar conectado"}], "lastModified": "2022-06-16T19:35:11.417", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:glpi-project:glpi:10.0.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6C1760F-4B01-4775-8481-D93BA28888BF"}, {"criteria": "cpe:2.3:a:glpi-project:glpi:10.0.0:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0378AD5-BFA0-40CD-BFB5-9D9E0790E9B7"}, {"criteria": "cpe:2.3:a:glpi-project:glpi:10.0.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E82A2E80-7C91-4147-A951-CA25E3AA1F01"}, {"criteria": "cpe:2.3:a:glpi-project:glpi:10.0.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16485B8E-5550-433C-A352-BABBC22DF375"}, {"criteria": "cpe:2.3:a:glpi-project:glpi:10.0.0:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "076C11C8-A848-43FB-8C01-E68D85015C58"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}