EUVD-2025-12118

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SQL Injection vulnerability in Centreon allows privilege escalation via altered contact form requests

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-55571	24 Apr 202510:08	–	circl
Circl	CVE-2025-3872	24 Apr 202510:08	–	circl
CNNVD	Centreon 安全漏洞	24 Apr 202500:00	–	cnnvd
CVE	CVE-2024-55571	24 Apr 202510:15	–	cve
CVE	CVE-2025-3872	24 Apr 202509:19	–	cve
Cvelist	CVE-2025-3872 Privilege escalation by altering payload in contact form	24 Apr 202509:19	–	cvelist
NVD	CVE-2025-3872	24 Apr 202510:15	–	nvd
OSV	CVE-2025-3872 Privilege escalation by altering payload in contact form	24 Apr 202509:19	–	osv
Positive Technologies	PT-2025-17722 · Centreon · Centreon Web	24 Apr 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-3872	26 Apr 202510:13	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "8dc9b38a-f0cf-317e-b92c-e8963deaf20d",
        "vendor": {
          "name": "Centreon"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1a5e614b-0c01-3999-b0a3-d30ee5eb1292",
        "product": {
          "name": "Centreon"
        },
        "product_version": "23.10.0 <23.10.20"
      },
      {
        "id": "2f1753c7-5c8e-34d7-9902-b331f1d7a645",
        "product": {
          "name": "Centreon"
        },
        "product_version": "24.10.0 <24.10.4"
      },
      {
        "id": "3979caee-3f93-395e-a824-3901730c9bad",
        "product": {
          "name": "Centreon"
        },
        "product_version": "22.10.0 <22.10.28"
      },
      {
        "id": "645eacfa-5511-387f-a1bb-089777fc544a",
        "product": {
          "name": "Centreon"
        },
        "product_version": "23.04.0 <23.04.25"
      },
      {
        "id": "e1081988-6a0a-35df-9697-4cb285b2edaa",
        "product": {
          "name": "Centreon"
        },
        "product_version": "24.04.0 <24.04.10"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-3872
github	www.github.com/centreon/centreon/releases
thewatch	www.thewatch.centreon.com/latest-security-bulletins-64/cve-2024-55571-centreon-web-high-severity-4496

03 Oct 2025 20:07Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.17.2

EPSS0.00102

SSVC