Publication date: August 7th, 2025
Components: centreon-web
Description: User with high privileges is able to introduce a SQLi using the Meta Service indicator page
Reference: CVE-2025-4650
CVSS: 7.2
Severity: High
Status: Fixes have been provided for all supported versions and it is recommended to update Centreon Web Centreon Central server:
These versions include cumulative fixes from prior updates.
Reporter: SpawnZii for YesWeHack
Submission: March 26, 2025
Stay ahead of potential threats by subscribing to the Security Bulletin section. You’ll receive instant notifications whenever a new bulletin is published, ensuring your infrastructure remains secure and up to date.