2 matches found
CVE-2018-21025
CVE-2018-21025 affects Centreon VM up to version 19.04.3. The vulnerability arises from incorrect rights on sourced configuration files in centreon-backup.pl, allowing an attacker to escalate to root via a crafted script. The CVSSv3.1 base score is 9.8 (CRITICAL) with network attack vector, low a...
CVE-2019-17104
Centreon VM (through 19.04.3) is affected by a cookie-configuration issue in the Apache HTTP Server: the HTTPOnly flag is not set, enabling potential theft of cookies. This vulnerability is documented across multiple sources (NVD, Red Hat, GHSA, OSV, CNVD, Veracode, CVE lists) and is tied to Cent...