security bulletin

CVE-2024-53923 - Centreon Web - Critical severity

2 months ago
January 13, 2025
0 replies
377 views

+20

Laurent
Centreonian
967 replies

Publication date: January 3rd, 2025

Component: centreon-web (on central server).

Feature: Upload of medias

Description: SQLi in the form to upload media in centreon-web, only accessible to authenticated users with high privilege access (access to administration pages).

Reference: CVE-2024-53923

CVSS: 9.1 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Severity: CRITICAL

Status: Fixes have been provided for all supported versions and it is recommended to update Centreon Central server:

These versions include cumulative fixes from prior updates.

Reporter: SpawnZii for YesWeHack

Submission: November 21, 2024

Stay ahead of potential threats by subscribing to the Security Bulletin section. You’ll receive instant notifications whenever a new bulletin is published, ensuring your infrastructure remains secure and up to date.

Did this topic help you find an answer to your question?

Be the first to reply!

Reply

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

Cookie settings

We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.

Basic
Functional

Normal
Functional + analytics

Complete
Functional + analytics + social media + embedded videos

Reply

Related topics

CVE-2024-55573 - Centreon Web - Critical severity

Community Recap #82

CVE-2024-55571 - Centreon Web - High severity

CVE-2024-55574 - Centreon Web - High severity

CVE-2024-55575 - Centreon Web - High severity

Most helpful members this week

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded

Cookie policy

Cookie settings