Known Vulnerabilities for products from Combodo
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Combodo".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-47489 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2023-11-09 | 2023-11-16 |
| CVE-2023-47488 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2023-11-09 | 2023-11-16 |
| CVE-2023-34447 json | iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, on `pages/UI.php`, cross... | 6.1 - MEDIUM | 2023-10-25 | 2023-10-31 |
| CVE-2023-34446 json | iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, when displaying `pages/p... | 6.1 - MEDIUM | 2023-10-25 | 2023-10-31 |
| CVE-2022-39216 json | Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, the reset pass... | 9.8 - CRITICAL | 2023-03-14 | 2023-03-19 |
| CVE-2022-39214 json | Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, a user who can... | 7.5 - HIGH | 2023-03-14 | 2023-03-18 |
| CVE-2022-31403 json | ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/pages/ajax.render.php. | 6.1 - MEDIUM | 2022-06-14 | 2022-06-22 |
| CVE-2022-31402 json | ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/webservices/export-v2.php. | 6.1 - MEDIUM | 2022-06-10 | 2022-06-17 |
| CVE-2022-24870 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-04-21 | 2022-04-29 |
| CVE-2022-24811 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-04-05 | 2022-04-19 |
| CVE-2022-24780 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2022-04-05 | 2022-10-07 |
| CVE-2021-41245 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.1 - HIGH | 2022-04-05 | 2022-04-13 |
| CVE-2021-41162 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-04-21 | 2022-04-28 |
| CVE-2021-41161 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-04-21 | 2022-05-04 |
| CVE-2021-32776 json | Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.4, CSRF tokens can be reused by a malicious ... | 8.8 - HIGH | 2021-07-21 | 2021-07-30 |
| CVE-2021-32775 json | Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.4, a non admin user can get access to many c... | 6.5 - MEDIUM | 2021-07-21 | 2021-07-30 |
| CVE-2021-32664 json | Combodo iTop is an open source web based IT Service Management tool. In affected versions there is a XSS vulnerability on "ru... | 4.8 - MEDIUM | 2021-10-19 | 2021-10-22 |
| CVE-2021-32663 json | iTop is an open source web based IT Service Management tool. In affected versions an attacker can call the system setup witho... | 7.5 - HIGH | 2021-10-19 | 2021-10-22 |
| CVE-2021-21407 json | Combodo iTop is an open source, web based IT Service Management tool. Prior to version 2.7.4, the CSRF token validation can b... | 6.5 - MEDIUM | 2021-07-21 | 2021-07-29 |
| CVE-2021-21406 json | Combodo iTop is an open source, web based IT Service Management tool. In versions prior to 2.7.4, there is a command injectio... | 8.8 - HIGH | 2021-07-21 | 2021-07-30 |