CVE-2024-28241 - Vulnerability Details - OpenCVE

The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workaround, use the default installation folder which involves installed folder is automatically secured by the system.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Gldpi-project	Gldpi-agent
Glpi-project	Glpi Agent

Configuration 1 [-]

cpe:2.3:a:glpi-project:glpi_agent:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9
https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw

History

Wed, 22 Jan 2025 20:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Glpi-project Glpi-project glpi Agent
CPEs		cpe:2.3:a:glpi-project:glpi_agent::::::::
Vendors & Products		Glpi-project Glpi-project glpi Agent

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-04-25T16:44:52.375Z

Updated: 2024-08-02T00:48:49.650Z

Reserved: 2024-03-07T14:33:30.035Z

Link: CVE-2024-28241

Vulnrichment

Updated: 2024-04-26T19:29:09.598Z

NVD

Status : Analyzed

Published: 2024-04-25T17:15:49.200

Modified: 2025-01-22T20:12:19.710

Link: CVE-2024-28241

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-28241", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-07T14:33:30.035Z", "datePublished": "2024-04-25T16:44:52.375Z", "dateUpdated": "2024-08-02T00:48:49.650Z"}, "containers": {"cna": {"title": "GlPI-Agent MSI package installation doesn't update folder security profile when using non default installation folder", "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "lang": "en", "description": "CWE-269: Improper Privilege Management", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw"}, {"name": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9", "tags": ["x_refsource_MISC"], "url": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9"}], "affected": [{"vendor": "glpi-project", "product": "glpi-agent", "versions": [{"version": "< 1.7.2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-25T16:44:52.375Z"}, "descriptions": [{"lang": "en", "value": "The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workaround, use the default installation folder which involves installed folder is automatically secured by the system."}], "source": {"advisory": "GHSA-3268-p58w-86hw", "discovery": "UNKNOWN"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-28241", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-04-26T18:44:30.259021Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:gldpi-project:gldpi-agent:*:*:*:*:*:*:*:*"], "vendor": "gldpi-project", "product": "gldpi-agent", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T18:03:23.300Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:48:49.650Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw"}, {"name": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9"}]}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-28241", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-07T14:33:30.035Z", "datePublished": "2024-04-25T16:44:52.375Z", "dateUpdated": "2024-06-04T18:03:23.300Z"}, "containers": {"cna": {"title": "GlPI-Agent MSI package installation doesn't update folder security profile when using non default installation folder", "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "lang": "en", "description": "CWE-269: Improper Privilege Management", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw"}, {"name": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9", "tags": ["x_refsource_MISC"], "url": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9"}], "affected": [{"vendor": "glpi-project", "product": "glpi-agent", "versions": [{"version": "< 1.7.2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-25T16:44:52.375Z"}, "descriptions": [{"lang": "en", "value": "The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workaround, use the default installation folder which involves installed folder is automatically secured by the system."}], "source": {"advisory": "GHSA-3268-p58w-86hw", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-28241", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-04-26T18:44:30.259021Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:gldpi-project:gldpi-agent:*:*:*:*:*:*:*:*"], "vendor": "gldpi-project", "product": "gldpi-agent", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-04-26T19:29:09.598Z"}, "title": "CISA ADP Vulnrichment"}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:glpi-project:glpi_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "1655019E-8DC6-4FE3-8F15-6A6B58B748EE", "versionEndExcluding": "1.7.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges. Users should upgrade to GLPI-Agent 1.7.2 to receive a patch. As a workaround, use the default installation folder which involves installed folder is automatically secured by the system."}, {"lang": "es", "value": "El Agente GLPI es un agente de gesti\u00f3n gen\u00e9rico. Antes de la versi\u00f3n 1.7.2, un usuario local pod\u00eda modificar el c\u00f3digo GLPI-Agent o usar DLL para modificar la l\u00f3gica del agente e incluso obtener mayores privilegios. Los usuarios deben actualizar a GLPI-Agent 1.7.2 para recibir un parche. Como workaround, utilice la carpeta de instalaci\u00f3n predeterminada, que implica que el sistema protege autom\u00e1ticamente la carpeta instalada."}], "id": "CVE-2024-28241", "lastModified": "2025-01-22T20:12:19.710", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-04-25T17:15:49.200", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/glpi-project/glpi-agent/commit/9a97114f595562c91b0833b4a800dd51e9df65e9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/glpi-project/glpi-agent/security/advisories/GHSA-3268-p58w-86hw"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-269"}], "source": "nvd@nist.gov", "type": "Primary"}]}