Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-94925
HistoryAug 19, 2021 - 12:00 a.m.

Centreon OS Command Injection Vulnerability

2021-08-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5

0.011 Low

EPSS

Percentile

84.1%

Centreon, a free and open source IT and application monitoring software, is vulnerable to an OS command injection vulnerability in /graphStatus/displayServiceStatus.php in Centreon version 19.10.8. A remote attacker can exploit this vulnerability to execute arbitrary OS commands via shell metacharacters in the RRDdatabase_path parameter.

CPENameOperatorVersion
centreon centreoneq19.10.8

0.011 Low

EPSS

Percentile

84.1%