Centreon Web@2.8 Security Vulnerabilities and Issues — Centreon Web@2.8 CVE List

Lucene search

CentreonCentreon Web2.8

4 matches found

CVE•added 2019/10/08 1:15 p.m.•56 views

CVE-2019-17107

minPlayCommand.php in Centreon Web before 2.8.27 allows authenticated attackers to execute arbitrary code via the command_hostaddress parameter. NOTE: some sources have listed CVE-2019-17017 for this, but that is incorrect.

8.8CVSS8.9AI score0.01694EPSS

CVE•added 2019/10/08 1:15 p.m.•44 views

CVE-2019-17108

Local file inclusion in brokerPerformance.php in Centreon Web before 2.8.28 allows attackers to disclose information or perform a stored XSS attack on a user.

6.1CVSS5.8AI score0.00091EPSS

CVE•added 2019/10/08 1:15 p.m.•33 views

CVE-2018-21023

getStats.php in Centreon Web before 2.8.28 allows authenticated attackers to execute arbitrary code via the ns_id parameter.

8.8CVSS8.8AI score0.01728EPSS

CVE•added 2019/10/08 3:15 p.m.•25 views

CVE-2019-17105

The token generator in index.php in Centreon Web before 2.8.27 is predictable.

5.3CVSS5.3AI score0.0006EPSS