Unauthorized Resource Removal in GLPI IT Management Software
CVE-2025-53112

Currently unrated

Key Information:

Vendor: GLPI Project
Status: GLPI
Vendor: CVE Published:; 30 July 2025

🔔 Create GLPI Project Vulnerability Alert

What is CVE-2025-53112?

A vulnerability in GLPI, a widely-used IT asset and management software, exists due to insufficient permission checks in versions 9.1.0 through 10.0.18. This oversight may allow attackers to remove specific resources without proper authorization. Users are encouraged to upgrade to version 10.0.19 or later to mitigate this risk.

References

https://github.com/glpi-project/glpi/security/advisories/...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025

JSON