Jump to:

Jump to:

CVE-2019-10233

Package glpi updated to version 9.4.2-alt1 for branch sisyphus in task 227264.

Published: 2019-03-27
Modified: 2024-11-21

CVE-2019-10233

Teclib GLPI before 9.4.1.1 is affected by a timing attack associated with a cookie.

Severity: HIGH (8.1) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla

Version: 2.1.0