Entity administrator is capable of retrieve normally inaccessible data (GLPI data, system data, mysql data).
TODO
Disabling Entities update right prevents exploit of this vulnerability.
Entities
Impact
Entity administrator is capable of retrieve normally inaccessible data (GLPI data, system data, mysql data).
Patches
TODO
Workarounds
Disabling
Entitiesupdate right prevents exploit of this vulnerability.