CVE-2021-21327: Remotely trigerring execution of your PHP objects in GLPI
Our team discovered a CVE in a popular open-source ITSM and Service Center software GLPI. The vulnerability allows to remotely trigger certain initialization code.
Ransomware, software vulnerabilities, org security – the list of threats is never-ending. Cybersecurity is challenging: it takes time, requires experienced people, and efficient processes.
That’s why we recognise the importance of accessing professional cybersecurity as a service.
We go beyond providing just security services. We work closely with you to build agile, iterative and continuously improving cybersecurity processes to protect your product
“The team showed a keen interest in understanding our business.”
Iterasec delivered a detailed report, which identified vulnerabilities and included mitigations for each one. The team facilitated a smooth workflow through frequent communication with the client.
“The communication was very constructive and frictionless.”
After the collaboration, the client was able to obtain ISO 27001 and ISO 9001 certifications. Iterasec worked hard to meet the needs and requirements of the internal team. They worked hard to ensure quality services. The client’s experience was impressive, paving the way to a successful partnership.
“They showed us a look from another perspective.”
Iterasec delivered a final report with a prioritized list of several identified risks. Their communication was easy and effective.
Please tell us what you are looking for, and we will happily support you in that. Feel free to use our contact form or contact us directly.