Vulnerabilities > CVE-2023-47489 - Unspecified vulnerability in Combodo Itop 3.1.0211973

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
combodo

Summary

CSV injection in export as csv in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute arbitrary code via a crafted script to the export-v2.php and ajax.render.php components.

Vulnerable Configurations

Part Description Count
Application
Combodo
1