ALT-PU-2019-1662-1

Package update glpi in branch sisyphus

Version9.4.2-alt1

Published2019-04-17

Max severityHIGH

Severity:

Closed issues (1)

HIGH8.1

Teclib GLPI before 9.4.1.1 is affected by a timing attack associated with a cookie.

Published: 2019-03-27Modified: 2024-11-21

CVSS 2.0MEDIUM 6.8

CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS 3.xHIGH 8.1

CVSS:3.x/CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References