Publication date: March 14, 2025
Component: centreon-web
Feature:
Event logs page
Description: ACL are not correctly taken into account in the display of the "event logs" page. This page requiring, high privileges, will display all available logs.
Reference: CVE-2025-4649
CVSS: 4.9 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM
Status: Fixes have been provided for all supported versions and it is recommended to update Centreon Central:
These versions include cumulative fixes from prior updates.
Reporter: Benoit Poulet
Submission: Feb 03, 2025
Stay ahead of potential threats by subscribing to the Security Bulletin section. You’ll receive instant notifications whenever a new bulletin is published, ensuring your infrastructure remains secure and up to date.