CVE-2024-28241 | GLPI Agent up to 1.7.1 Installation privileges management

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability was found in GLPI Agent up to 1.7.1 and classified as critical. This issue affects some unknown processing of the component Installation Handler. The manipulation leads to improper privilege management.

The identification of this vulnerability is CVE-2024-28241. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28241 | GLPI Agent up to 1.7.1 Installation privileges management

Post correlati

CVE-2024-27336 | Kofax Power PDF PNG File Parser out-of-bounds

CVE-2024-34611 | Samsung Devices KnoxService access control

CVE-2024-4471 | xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress export_content deserialization

CVE-2024-43858 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 jfs array index