CVE-2021-32775

Published July 21st, 2021

View on NVD ↗

CVSS v3

7.7

HIGH

CVSS v2

MEDIUM

Affected

PROJECT

Description

Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.4, a non admin user can get access to many class/field values through GroupBy Dashlet error message. This issue is fixed in versions 2.7.4 and 3.0.0.

Combodo/iTop

A simple, web based CMDB & IT Service Management tool

GitHub

1.13K