Vulnerabilities > CVE-2022-31062 - Unspecified vulnerability in Glpi-Project Glpi Inventory 1.0.0/1.0.1

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
glpi-project

Summary

### Impact A plugin public script can be used to read content of system files. ### Patches Upgrade to version 1.0.2. ### Workarounds `b/deploy/index.php` file can be deleted if deploy feature is not used.

Vulnerable Configurations

Part Description Count
Application
Glpi-Project
3