CVE-2025-12514

🗓️ 22 Dec 2025 10:59:18Reported by CentreonType

CVE-2025-12514 enables elevated users to inject SQL via Open-tickets rules in Centreon.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-12514	22 Dec 202515:11	–	circl
CNNVD	Centreon 安全漏洞	22 Dec 202500:00	–	cnnvd
Cvelist	CVE-2025-12514 A user with elevated privileges is able to introduce a SQL Injection using the Open-tickets Notification rules configuration parameters	22 Dec 202510:59	–	cvelist
EUVD	EUVD-2025-204709	22 Dec 202510:59	–	euvd
NVD	CVE-2025-12514	22 Dec 202511:15	–	nvd
OSV	CVE-2025-12514 A user with elevated privileges is able to introduce a SQL Injection using the Open-tickets Notification rules configuration parameters	22 Dec 202510:59	–	osv
Positive Technologies	PT-2025-52643	22 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-12514	23 Dec 202511:35	–	redhatcve
Vulnrichment	CVE-2025-12514 A user with elevated privileges is able to introduce a SQL Injection using the Open-tickets Notification rules configuration parameters	22 Dec 202510:59	–	vulnrichment

NVD

Node

centreon open_ticketsRange23.10.0–23.10.4

centreon open_ticketsRange24.04.0–24.04.5

centreon open_ticketsRange24.10.0–24.10.5

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "Notification rules configuration parameters",
      "Open tickets"
    ],
    "product": "Infra Monitoring - Open-tickets",
    "vendor": "Centreon",
    "versions": [
      {
        "lessThan": "24.10.5",
        "status": "affected",
        "version": "24.10.0",
        "versionType": "custom"
      },
      {
        "lessThan": "24.04.5",
        "status": "affected",
        "version": "24.04.0",
        "versionType": "custom"
      },
      {
        "lessThan": "23.10.4",
        "status": "affected",
        "version": "23.10.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
thewatch	www.thewatch.centreon.com/latest-security-bulletins-64/cve-2025-12514-centreon-open-tickets-high-severity-5343
github	www.github.com/centreon/centreon/releases

26 Jan 2026 15:52Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.2

EPSS0.00026

SSVC

CWE-89