centreon/centreon Security Advisories for 19.04.6 (7)
-
[CRITICAL] Centreon vulnerable to SQL Injection
PKSA-bcws-c8z3-x4hd CVE-2022-3827 GHSA-j5wx-jvw3-j363
Affected version: <22.10.0-beta1
Reported by:
GitHub -
[MEDIUM] Centreon contains cross-site scripting vulnerability via esc_name parameter
PKSA-pdnv-cjzz-v7kw CVE-2022-40044 GHSA-rv5q-72p2-2q24
Affected version: >=22.0.0,<22.04.1|>=21.10.0,<21.10.8|<21.04.16
Reported by:
GitHub -
[HIGH] Centreon SQL Injection vulnerability via esc_name parameter
PKSA-yzgg-m42t-mxn3 CVE-2022-40043 GHSA-25gv-wg6f-6frp
Affected version: >=22.0.0,<22.04.1|>=21.10.0,<21.10.8|<21.04.16
Reported by:
GitHub -
[MEDIUM] Centreon Sensitive Data Exposure vulnerability
PKSA-2pj6-84j6-hdgf CVE-2020-10945 GHSA-h5qv-p378-3hhr
Affected version: <2.8.32|>=18.0.0,<18.10.11|>=19.0.0,<19.04.10|>=19.10.0,<19.10.7
Reported by:
GitHub -
[HIGH] OS Command Injection in Centreon
PKSA-kgpp-zx3j-yr8n CVE-2020-22345 GHSA-2q95-593f-g7h7
Affected version: <=19.10.8
Reported by:
GitHub -
[HIGH] Command Injection in Centreon
PKSA-gqn1-r71z-4prr CVE-2020-13252 GHSA-jmgg-wx67-7qfv
Affected version: <19.04.15
Reported by:
GitHub -
[MEDIUM] Cross-site scripting in Centreon
PKSA-kq2z-fvrd-8wtw CVE-2021-27676 GHSA-r5mf-q76q-f2xq
Affected version: <20.10.7
Reported by:
GitHub