Known Vulnerabilities for Itop by Combodo
Listed below are 10 of the newest known vulnerabilities associated with "Itop" by "Combodo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-47489 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2023-11-09 | 2023-11-16 |
| CVE-2023-47488 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2023-11-09 | 2023-11-16 |
| CVE-2023-34447 json | iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, on `pages/UI.php`, cross... | 6.1 - MEDIUM | 2023-10-25 | 2023-10-31 |
| CVE-2023-34446 json | iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, when displaying `pages/p... | 6.1 - MEDIUM | 2023-10-25 | 2023-10-31 |
| CVE-2022-39216 json | Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, the reset pass... | 9.8 - CRITICAL | 2023-03-14 | 2023-03-19 |
| CVE-2022-39214 json | Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, a user who can... | 7.5 - HIGH | 2023-03-14 | 2023-03-18 |
| CVE-2022-31403 json | ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/pages/ajax.render.php. | 6.1 - MEDIUM | 2022-06-14 | 2022-06-22 |
| CVE-2022-31402 json | ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/webservices/export-v2.php. | 6.1 - MEDIUM | 2022-06-10 | 2022-06-17 |
| CVE-2022-24870 json | Combodo iTop is a web based IT Service Management tool. In 3.0.0 beta releases prior to 3.0.0 beta3 a malicious script can be... | 5.4 - MEDIUM | 2022-04-21 | 2022-04-29 |
| CVE-2022-24811 json | Combodi iTop is a web based IT Service Management tool. Prior to versions 2.7.6 and 3.0.0, cross-site scripting is possible f... | 5.4 - MEDIUM | 2022-04-05 | 2022-04-19 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Combodo | Itop | 3.0.0 | |||
| Application | Combodo | Itop | 2.7.3 | |||
| Application | Combodo | Itop | 2.7.2 | |||
| Application | Combodo | Itop | 2.7.0-2 | |||
| Application | Combodo | Itop | 2.7.0-1 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7.0 | |||
| Application | Combodo | Itop | 2.7 | |||
| Application | Combodo | Itop | 2.6.4 | |||
| Application | Combodo | Itop | 2.6.4 | |||
| Application | Combodo | Itop | 2.6.4 | |||
| Application | Combodo | Itop | 2.6.3 | |||
| Application | Combodo | Itop | 2.6.1 | |||
| Application | Combodo | Itop | 2.6.0 | |||
| Application | Combodo | Itop | 2.6.0 | |||
| Application | Combodo | Itop | 2.6.0 |