GLPI Inventory 插件存在不当访问控制漏洞 (Improper Access Control Vulnerability)

该访问控制漏洞允许攻击者绕过正常的安全机制，访问 GLPI Inventory plugin 管理的敏感数据。攻击者可能能够获取有关网络拓扑、已安装软件、VMWare ESX 主机配置以及其他系统信息。这些信息可用于进一步的攻击，例如横向移动到其他系统、实施特权提升攻击或窃取敏感数据。由于 GLPI 通常用于管理 IT 基础设施，因此该漏洞的潜在影响范围非常广泛，可能导致数据泄露、服务中断和声誉损害。类似的安全漏洞可能导致未经授权的系统访问和数据泄露。

Organizations utilizing GLPI for IT asset management and specifically deploying the Inventory Plugin are at risk. This includes environments with multiple user roles and granular access controls, as the vulnerability could be exploited to escalate privileges and gain unauthorized access to sensitive inventory data. Shared hosting environments running GLPI are also particularly vulnerable, as they may have limited control over plugin updates and security configurations.

• php: Examine GLPI plugin files for insecure access control checks. Search for instances where user authentication or authorization is bypassed.

grep -r 'user_id' /path/to/glpi/plugins/inventory/ 

• generic web: Monitor GLPI access logs for unusual activity, such as requests to plugin endpoints from unauthorized IP addresses or user accounts.

 grep "Unauthorized" /var/log/apache2/access.log | grep /plugins/inventory/ 

1. 2025-03-25Disclosure

   disclosure

1. 已保留2025-02-19
2. 发布日期2025-03-25
3. EPSS 更新日期2026-03-23

最有效的缓解措施是立即将 GLPI Inventory plugin 升级至 1.5.0 或更高版本。如果升级会中断现有系统，可以考虑回滚到之前的稳定版本，但请注意这只是临时解决方案。此外，建议审查 GLPI 的访问控制策略，确保只有授权用户才能访问敏感数据。实施 Web 应用防火墙 (WAF) 可以帮助检测和阻止恶意请求。定期审查 GLPI 的日志文件，以查找任何可疑活动。升级后，请验证插件是否正常工作，并确认漏洞已成功修复。