CVE-2021-32664

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-32664
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-32664.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-32664
Related
  • GHSA-j758-ggwg-9mpj
Published
2021-10-19T18:15:07Z
Modified
2025-01-08T10:45:11.869177Z
Severity
  • 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Combodo iTop is an open source web based IT Service Management tool. In affected versions there is a XSS vulnerability on "run query" page when logged as administrator. This has been resolved in versions 2.6.5 and 2.7.5.

References

Affected packages

Git / github.com/combodo/itop

Affected ranges

Affected versions

2.*

2.5.1
2.5.2
2.5.3
2.5.4
2.6.0
2.6.0-a
2.6.0-products
2.6.1
2.6.2
2.6.2-1
2.6.2-2
2.6.3
2.6.4

Other

N1963
N2011
N2016
N941
N941-2