Publication date: February 25th, 2026
Components: centreon-web
Description: Broken Function Level Authorization allows execution of poller post-restart commands by authenticated user.
Reference: CVE-2025-13050
CVSS: 5.4
Severity: Medium
Status: Fixes have been provided for all supported versions and it is recommended to update Centreon Web on Central Server:
These versions include cumulative fixes from prior updates.
If you are using an High Availability Platform, please ensure to follow the Centreon HA Update procedures.
Reporter: N/A
Stay ahead of potential threats by subscribing to the Security Bulletin section. You’ll receive instant notifications whenever a new bulletin is published, ensuring your infrastructure remains secure and up to date.