CVE-2025-27153
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-27153
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-27153.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-27153
- Aliases
-
- GHSA-pvqv-8r3r-47m9
- Published
- 2025-07-01T19:15:25Z
- Modified
- 2025-07-03T16:50:13.521632Z
- Summary
- [none]
- Details
-
Escalade GLPI plugin is a ticket escalation process helper for GLPI. Prior to version 2.9.11, there is an improper access control vulnerability. This can lead to data exposure and workflow disruptions. This issue has been patched in version 2.9.11.
- References
Affected packages
Git / github.com/pluginsglpi/escalade
Affected ranges
- Type
- GIT
- Repo
- https://github.com/pluginsglpi/escalade
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
0.*
0.85-1.0
0.85-1.1
0.90+1.0.1
0.90+1.0.2
0.90-1.0
0.90-1.1
0.90-1.2
0.90-1.3
2.*
2.1.0
2.2.0
2.2.1
2.2.2
2.2.3
2.3.0
2.3.1
2.3.2
2.3.3
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.5.0
2.6.0
2.6.1
2.6.2
2.7.0
2.7.1
2.7.2
2.8.0
2.8.1
2.8.2
2.8.3
2.9.0
2.9.1
2.9.10
2.9.2
2.9.3
2.9.4
2.9.5
2.9.6
2.9.7
2.9.8
2.9.9