{"id":"CVE-2021-39190","details":"The SCCM plugin for GLPI is a plugin to synchronize computers from SCCM (version 1802) to GLPI. In versions prior to 2.3.0, the Configuration page is publicly accessible in read-only mode. This issue is patched in version 2.3.0. No known workarounds exist.","modified":"2026-04-10T04:37:19.652592Z","published":"2022-09-22T17:15:09.690Z","related":["GHSA-3324-57w6-jxcq"],"references":[{"type":"ADVISORY","url":"https://github.com/pluginsGLPI/sccm/security/advisories/GHSA-3324-57w6-jxcq"},{"type":"FIX","url":"https://github.com/pluginsGLPI/sccm/commit/29a7f92d32a0cf9aa3f22c52c50b738274d2813e"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pluginsglpi/sccm","events":[{"introduced":"0"},{"fixed":"a6e21dcd3d266de72f306a2a807ba5b6c2fa4aef"},{"fixed":"29a7f92d32a0cf9aa3f22c52c50b738274d2813e"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.3.0"}]}}],"versions":["0.84-1.0.0","0.85-1.0Beta","1.0.0","2.3.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-39190.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}]}