CVE-2026-44281 in glpiinfo

Summary

by MITRE • 06/03/2026

GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, an authenticated user with config READ permission can read a specific asset object. Upgrade to 11.0.7 or 10.0.25 to receive a patch.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

GitHub M

Reservation

05/05/2026

Disclosure

06/03/2026

Moderation

accepted

Entry

VDB-368152

CPE

ready

CWE

CWE-862 (confirmed)

CVSS

3.8 (VulDB)

EPSS

0.00036

KEV

Activities

low

Sector

Police, Pharma, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-44281
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-44281
CVE Details	https://www.cvedetails.com/cve/CVE-2026-44281/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!