High severity8.2NVD Advisory· Published Dec 26, 2024· Updated Apr 15, 2026

CVE-2024-53850

Description

The Addressing GLPI plugin enables you to create IP reports for visualize IP addresses used and free on a given network.. Starting with 3.0.0 and before 3.0.3, a poor security check allows an unauthenticated attacker to determine whether data exists (by name) in GLPI.

Patches

23e9b585ee99

https://github.com/pluginsGLPI/addressingvia osv

b334187a9920

https://github.com/pluginsGLPI/addressingvia osv

commit

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/pluginsGLPI/addressing/commit/b334187a99206abbd7d0bc84f720b0a6e69e92f0nvd
github.com/pluginsGLPI/addressing/security/advisories/GHSA-fw42-79gw-7qr9nvd

News mentions

No linked articles in our index yet.

cvss	0.533
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000