GCVE - cpe:2.3:a:teclib-edition:addressing:*:*:*:*:*:glpi:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:teclib-edition:addressing:*:*:*:*:*:glpi:*:*

part: a version: * update: *

Vendor	Teclib Edition (`1b650540-9d56-5f76-9106-9601eca6faa7`)
Product	Addressing (`997b2b1d-7b9b-5949-bf2b-4da534eb1667`)
Edition	*
Language	*
Software edition	*
Target software	glpi
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-43779`	vulnerable	2026-06-08 05:36:44.244561	Remote Command Execution vulnerability CRITICAL (9.9) GLPI is an open source IT Asset Management, issue tracking system and service desk system. The GLPI addressing plugin in versions < 2.9.1 suffers from authenticated Remote Code Execution vulnerability, allowing access to the server's underlying operating system using command injection abuse of functionality. There is no workaround for this issue and users are advised to upgrade or to disable the addressing plugin. Published: 2022-01-05T18:45:11.000Z Updated: 2025-09-08T15:33:16.901Z Open on db.gcve.eu Reference links https://github.com/pluginsGLPI/addressing/security/advisories/GHSA-q5fp-xpr8-77jh https://github.com/pluginsGLPI/addressing/commit/6f55964803054a5acb5feda92c7c7f1d91ab5366 https://github.com/hansmach1ne/MyExploits/tree/main/RCE_GLPI_addressing_plugin	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.