CVE-2019-19486

Local File Inclusion in minPlayCommand.php in Centreon 19.04.4 and below allows an attacker to traverse paths via a plugin test...

CVE-2019-19484

Open redirect via parameter ‘p’ in login.php in Centreon 19.04.4 and below allows an attacker to craft a payload and execute unintended behavior...

Centreon Input Validation Error Vulnerability (CNVD-2020-21242)

Centreon Merethis Centreon is a set of open source system monitoring tools from the French company Centreon . The product mainly provides monitoring functions on the network , system and application resources . An input validation error vulnerability exists in Centreon 19.04.4 and earlier version...

Centreon OS Command Injection Vulnerability (CNVD-2020-21244)

Centreon Merethis Centreon is a set of open source system monitoring tools from the French company Centreon . The product mainly provides monitoring functions on the network , system and application resources . Centreon 19.04.4 and earlier versions of the minPlayCommand.php file operating system...

Centreon Web Elevation of Privilege Vulnerability

Centreon Web is a set of open source system monitoring tools from the French company Centreon . The product mainly provides monitoring functions on the network , system and application resources . A security vulnerability exists in Centreon Web version 19.04.4. An attacker can exploit this...

CVE-2019-16406

Centreon Web 19.04.4 has weak permissions within the OVA aka VMware virtual machine and OVF aka VirtualBox virtual machine files, allowing attackers to gain privileges via a Trojan horse Centreon-autodisco executable file that is launched by cron...

CVE-2019-16406

Centreon Web 19.04.4 is affected. Weak permissions in the OVA/OVF files enable privilege escalation via a Trojan horse Centreon-autodisco executable launched by cron, granting higher privileges. The Red Hat and CVE references corroborate the same issue across multiple feeds. No additional exploit...