Design/Logic Flaw

2020-03-0422:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.9%

JSON

An issue was discovered in Centreon before 2.8-30,18.10-8, 19.04-5, and 19.10-2. It provides sensitive information via an unauthenticated direct request for include/monitoring/recurrentDowntime/GetXMLHost4Services.php.

CPENameOperatorVersion
centreonlt2.8.30
centreonge19.0.0
centreonlt19.04.5
centreonge19.04.6
centreonlt19.10.2
centreonge2.8.4
centreonlt18.10.8

Name	Operator	Version
centreon	lt	2.8.30
centreon	ge	19.0.0
centreon	lt	19.04.5
centreon	ge	19.04.6
centreon	lt	19.10.2
centreon	ge	2.8.4
centreon	lt	18.10.8

References

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.8.html