CVE-2022-35914

Teclib GLPI Remote Code Execution Vulnerability

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

Act

*SSVC

Descriptions

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.

El archivo /vendor/htmlawed/htmlawed/htmLawedTest.php en el módulo htmlawed para GLPI versiones hasta 10.0.2, permite una inyección de código PHP

Teclib GLPI contains a remote code execution vulnerability in the third-party library, htmlawed.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Act

Exploitation

Active

Automatable

Yes

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2022-07-15 CVE Reserved
2022-09-19 CVE Published
2022-10-09 First Exploit
2023-03-07 Exploited in Wild
2023-03-28 KEV Due Date
2025-01-29 CVE Updated
2025-03-30 EPSS Updated

CWE

CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CAPEC

References (20)

URL	Tag	Source
https://github.com/glpi-project/glpi/releases	Release Notes
https://github.com/Orange-Cyberdefense/CVE-repository
https://github.com/Orange-Cyberdefense/CVE-repository/blob/master/PoCs/POC_2022-35914.sh
https://mayfly277.github.io/posts/GLPI-htmlawed-CVE-2022-35914

URL	Date	SRC
https://packetstorm.news/files/id/178425	2024-05-02
https://packetstorm.news/files/id/169501	2022-10-25
https://www.exploit-db.com/exploits/52023	2024-05-19
https://github.com/cosad3s/CVE-2022-35914-poc	2024-01-02
https://github.com/Lzer0Kx01/CVE-2022-35914	2022-10-09
https://github.com/allendemoura/CVE-2022-35914	2024-04-26
https://github.com/0romos/CVE-2022-35914	2024-05-29
https://github.com/0xGabe/CVE-2022-35914	2022-11-06
https://github.com/Johnermac/CVE-2022-35914	2023-03-07
https://github.com/6E6L6F/CVE-2022-35914	2022-10-12
https://github.com/senderend/CVE-2022-35914	2024-10-23
https://github.com/noxlumens/CVE-2022-35914_poc	2024-08-25
https://github.com/btar1gan/exploit_CVE-2022-35914	2024-09-20
http://packetstormsecurity.com/files/169501/GLPI-10.0.2-Command-Injection.html	2025-01-29

URL	Date	SRC
http://www.bioinformatics.org/phplabware/sourceer/sourceer.php?&Sfs=htmLawedTest.php&Sl=.%2Finternal_utilities%2FhtmLawed	2022-10-28

URL	Date	SRC
https://glpi-project.org/fr/glpi-10-0-3-disponible	2022-10-28

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Glpi-project Search vendor "Glpi-project"		Glpi Search vendor "Glpi-project" for product "Glpi"				<= 10.0.2 Search vendor "Glpi-project" for product "Glpi" and version " <= 10.0.2"		-		Affected