1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Teclib GLPI Remote Code Execution Vulnerability

Known Exploited Vulnerabilities CVE-2022-35914 Mappings

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2022-35914 Teclib GLPI Remote Code Execution Vulnerability exploitation_technique T1059 Command and Scripting Interpreter
Comments
This vulnerability is exploited by a remote, unauthenticated attacker via /vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2, which allows PHP code injection. in the wild exploitation details have not been publicly released for this vulnerability
References
  1. https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html
  2. https://vulncheck.com/blog/glpi-exploitation
  3. https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=33928
CVE-2022-35914 Teclib GLPI Remote Code Execution Vulnerability exploitation_technique T1190 Exploit Public-Facing Application
Comments
This vulnerability is exploited by a remote, unauthenticated attacker via /vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2, which allows PHP code injection. in the wild exploitation details have not been publicly released for this vulnerability
References
  1. https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html
  2. https://vulncheck.com/blog/glpi-exploitation
  3. https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=33928