=====================================================================

                                  CERT-Renater

                      Note d'Information No. 2023/VULN032

_____________________________________________________________________

DATE                : 27/01/2023

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Glpi  versions prior to 10.0.6.

=====================================================================
https://github.com/glpi-project/glpi/security/advisories/GHSA-3ghv-p34r-5ghx
https://github.com/glpi-project/glpi/security/advisories/GHSA-6565-hm87-24hf
_____________________________________________________________________

Unauthorized access to inventory files

High
trasher published GHSA-3ghv-p34r-5ghx

Package
glpi (glpi)

Affected versions
 > = 10.0.0

Patched versions
10.0.6


Description

Impact

This vulnerability allow unauthorized access to inventory files. Thus,
if anonymous access to FAQ is allowed, inventory files are accessbile
by unauthenticated users.


Patches

Upgrade to 10.0.6.


Workarounds

Disable native inventory and delete inventory files from server
(default location is files/_inventory).


For more information

If you have any questions or comments about this advisory, mail
us at glpi-security@ow2.org.


Severity
High

7.5/ 10

CVSS base metrics

Attack vector
Network

Attack complexity
Low

Privileges required
None

User interaction
None

Scope
Unchanged

Confidentiality
High

Integrity
None

Availability
None

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVE ID
CVE-2023-22500

Weaknesses
CWE-284


Credits

     @cedric-anne cedric-anne

_____________________________________________________________________

Unauthorized access to data export
Moderate
trasher published GHSA-6565-hm87-24hf

Package
glpi (glpi)

Affected versions
 > = 0.65

Patched versions
9.5.12, 10.0.6


Description

Impact

Any user having access to standard interface can export data of
almost any GLPI item type, even those on which user is not allowed
to access (including assets, tickets, users, ...).
Patches

Upgrade to 10.0.6.


For more information

If you have any questions or comments about this advisory,
mail us at glpi-security@ow2.org.


everity
Moderate

6.5/ 10

CVSS base metrics

Attack vector
Network

Attack complexity
Low

Privileges required
Low

User interaction
None

Scope
Unchanged

Confidentiality
High

Integrity
None

Availability
None

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE ID
CVE-2023-23610

Weaknesses
CWE-284


Credits

     @cedric-anne cedric-anne



=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================