CVE-2025-64516

GLPI is a free asset and IT management software package. Prior to 10.0.21 and 11.0.3, an unauthorized user can access GLPI documents attached to any item (ticket, asset, ...). If the public FAQ is enabled, this unauthorized access can be performed by an anonymous user. This vulnerability is fixed in 10.0.21 and 11.0.3.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/glpi-project/glpi/commit/51412a89d3174cfe22967b051d527febdbceab3c	Patch
https://github.com/glpi-project/glpi/commit/ee7ee28e0645198311c0a9e0c4e4b712b8788e27	Patch
https://github.com/glpi-project/glpi/releases/tag/10.0.21	Release Notes
https://github.com/glpi-project/glpi/releases/tag/11.0.3	Release Notes
https://github.com/glpi-project/glpi/security/advisories/GHSA-487h-7mxm-7r46	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:glpi-project:glpi::::::::
	cpe:2.3:a:glpi-project:glpi::::::::

History

No history.

Information

Published : 2026-01-15 16:16

Updated : 2026-01-21 20:53

NVD link : CVE-2025-64516

Mitre link : CVE-2025-64516

CVE.ORG link : CVE-2025-64516

JSON object : View

Products Affected

glpi-project

glpi

CWE

CWE-284

Improper Access Control

CWE-639

Authorization Bypass Through User-Controlled Key

{"id": "CVE-2025-64516", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2026-01-15T16:16:11.487", "references": [{"url": "https://github.com/glpi-project/glpi/commit/51412a89d3174cfe22967b051d527febdbceab3c", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/glpi-project/glpi/commit/ee7ee28e0645198311c0a9e0c4e4b712b8788e27", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/glpi-project/glpi/releases/tag/10.0.21", "tags": ["Release Notes"], "source": "security-advisories@github.com"}, {"url": "https://github.com/glpi-project/glpi/releases/tag/11.0.3", "tags": ["Release Notes"], "source": "security-advisories@github.com"}, {"url": "https://github.com/glpi-project/glpi/security/advisories/GHSA-487h-7mxm-7r46", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-284"}, {"lang": "en", "value": "CWE-639"}]}], "descriptions": [{"lang": "en", "value": "GLPI is a free asset and IT management software package. Prior to 10.0.21 and 11.0.3, an unauthorized user can access GLPI documents attached to any item (ticket, asset, ...). If the public FAQ is enabled, this unauthorized access can be performed by an anonymous user. This vulnerability is fixed in 10.0.21 and 11.0.3."}], "lastModified": "2026-01-21T20:53:37.090", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71497A1A-8C87-48D5-9BA2-CFFF057BC3A7", "versionEndExcluding": "10.0.21", "versionStartIncluding": "10.0.0"}, {"criteria": "cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9EA5DDA-E0E7-4530-B266-309AF584D327", "versionEndExcluding": "11.0.3", "versionStartIncluding": "11.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}