PT-2025-31387 · Glpi+2 · Glpi+2

Cconard96

·

Published

2025-07-29

·

Updated

2025-10-07

·

CVE-2025-53111

CVSS v2.0

6.8

Medium

VectorAV:N/AC:L/Au:S/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions GLPI versions 0.80 through 10.0.18
Description GLPI is an Asset and IT Management Software package. A missing permission check can allow unauthorized access to some resources.
Recommendations Update to version 10.0.19 or later.

Exploit

Fix

Improper Access Control

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-862

Related Identifiers

ALT-PU-2025-10163
ALT-PU-2025-9984
BDU:2025-12945
CVE-2025-53111
GHSA-P665-MQCR-J96J

Affected Products

Alt Linux
Glpi
Red Os