Centreon Sensitive Data Exposure

2022-05-2416:58:02

Google

osv.dev

0.001 Low

EPSS

Percentile

44.0%

In Centreon Web through 2.8.29, disclosure of external components’ passwords allows authenticated attackers to move laterally to external components.

CPENameOperatorVersion
centreon/centreoneq2.7.3

CPE	Name	Operator	Version
	centreon/centreon	eq	2.7.3

References

github.com/centreon/centreon-archived

github.com/centreon/centreon-archived/issues/7098

github.com/centreon/centreon-archived/pull/9311

nvd.nist.gov/vuln/detail/CVE-2019-17106

www.openwall.com/lists/oss-security/2019/10/08/1

0.001 Low

EPSS

Percentile

44.0%

Related for OSV:GHSA-RX4J-X3FH-9QWG