Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
centreon centreon vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2018-21021
img_gantt.php in Centreon Web prior to 2.8.27 allows malicious users to perform SQL injections via the host_id parameter.
Centreon Centreon Web
NA
CVE-2022-34871
This vulnerability allows remote malicious users to escalate privileges on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the configuration of poller resources. The issue results from the lack of prope...
Centreon Centreon 21.10.2
6.5
CVSSv2
CVE-2018-21022
makeXML_ListServices.php in Centreon Web prior to 2.8.28 allows malicious users to perform SQL injections via the host_id parameter.
Centreon Centreon Web
10
CVSSv2
CVE-2018-21025
In Centreon VM up to and including 19.04.3, centreon-backup.pl allows malicious users to become root via a crafted script, due to incorrect rights of sourced configuration files.
Centreon Centreon Vm
6.5
CVSSv2
CVE-2019-17107
minPlayCommand.php in Centreon Web prior to 2.8.27 allows authenticated malicious users to execute arbitrary code via the command_hostaddress parameter. NOTE: some sources have listed CVE-2019-17017 for this, but that is incorrect.
Centreon Centreon Web
9
CVSSv2
CVE-2020-22345
/graphStatus/displayServiceStatus.php in Centreon 19.10.8 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the RRDdatabase_path parameter.
Centreon Centreon 19.10.8
6.5
CVSSv2
CVE-2020-22425
Centreon 19.10-3.el7 is affected by a SQL injection vulnerability, where an authorized user is able to inject additional SQL queries to perform remote command execution.
Centreon Centreon 19.10
NA
CVE-2022-34872
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of Virtual Metrics. The issue results from the lack o...
Centreon Centreon 21.10.2
NA
CVE-2022-36194
Centreon 22.04.0 is vulnerable to Cross Site Scripting (XSS) from the function Pollers > Broker Configuration by adding a crafted payload into the name parameter.
Centreon Centreon 22.04.0
4
CVSSv2
CVE-2019-17106
In Centreon Web up to and including 2.8.29, disclosure of external components' passwords allows authenticated malicious users to move laterally to external components.
Centreon Centreon Web
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »