Lucene search

K

MitreCVELIST:CVE-2019-15299

HistoryFeb 24, 2020 - 12:55 p.m.

CVE-2019-15299

2020-02-2412:55:57

mitre

www.cve.org

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

An issue was discovered in Centreon Web through 19.04.3. When a user changes his password on his profile page, the contact_autologin_key field in the database becomes blank when it should be NULL. This makes it possible to partially bypass authentication.

References

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html

github.com/centreon/centreon/pull/8072

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

Related for CVELIST:CVE-2019-15299

cve1 prion1 veracode1 nvd1