The vulnerability, tracked as CVE-2023-41321 and CVE-41323 impacts GLPI Web servers. They allow an unauthenticated attacker to get user enumeration and retrieve sensitive information about them.
The Stormhield Network Security (SNS) appliance protects you from that attack, thanks to dedicated IPS signatures. To work efficiently on HTTPS traffic, the SSL proxy needs to be enabled.
| ID | Name |
| http:url:decoded.418 | Exploitation of user enumeration vulnerability in GLPI (CVE-2023-41323) |
| http:url:decoded.419 | Exploitation of sensitive fields enumeration vulnerability in GLPI (CVE-2023-41321) |