VYPR

GLPI Agent

by Glpi Project

CVEs (3)

  • CVE-2024-28241Apr 25, 2024
    risk 0.00cvss epss 0.00

    The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workaround, use the default…

  • CVE-2024-28240Apr 25, 2024
    risk 0.00cvss epss 0.00

    The GLPI Agent is a generic management agent. A vulnerability that only affects GLPI-Agent installed on windows via MSI packaging can allow a local user to cause denial of agent service by replacing GLPI server url with a wrong url or disabling the service. Additionally, in the…

  • CVE-2023-34254Jun 23, 2023
    risk 0.00cvss epss 0.01

    The GLPI Agent is a generic management agent. Prior to version 1.5, if glpi-agent is running remoteinventory task against an Unix platform with ssh command, an administrator user on the remote can manage to inject a command in a specific workflow the agent would run with the…