CVE-2024-28240
- EPSS 0.05%
- Published 25.04.2024 17:15:49
- Last modified 22.01.2025 20:17:23
The GLPI Agent is a generic management agent. A vulnerability that only affects GLPI-Agent installed on windows via MSI packaging can allow a local user to cause denial of agent service by replacing GLPI server url with a wrong url or disabling the s...
CVE-2024-28241
- EPSS 0.06%
- Published 25.04.2024 17:15:49
- Last modified 22.01.2025 20:12:19
The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workar...
CVE-2023-34254
- EPSS 0.25%
- Published 23.06.2023 21:15:09
- Last modified 21.11.2024 08:06:52
The GLPI Agent is a generic management agent. Prior to version 1.5, if glpi-agent is running remoteinventory task against an Unix platform with ssh command, an administrator user on the remote can manage to inject a command in a specific workflow the...