3 matches found
CVE-2019-15299
An issue was discovered in Centreon Web through 19.04.3. When a user changes his password on his profile page, the contactautologinkey field in the database becomes blank when it should be NULL. This makes it possible to partially bypass authentication...
CVE-2019-15299
Centreon Web (up to version 19.04.3) contains an authentication bypass issue: after a user changes their password on their profile page, the contact_autologin_key field in the database is set to blank instead of NULL. This behavior enables partial bypass of authentication. The available connected...
CVE-2019-15299
An issue was discovered in Centreon Web through 19.04.3. When a user changes his password on his profile page, the contactautologinkey field in the database becomes blank when it should be NULL. This makes it possible to partially bypass authentication...