Security fixed in Centreon Web

Submission: June 26, 2024

Publication date: October 1, 2024

Severity: MEDIUM

Component: centreon-web

Fixes have been provided for all supported versions and it is recommended to update Centreon Web:

• Centreon Web 24.04.7
• Centreon Web 23.10.17
• Centreon Web 23.04.22
• Centreon Web 22.10.24

These versions include cumulative fixes from prior updates.

CVE-2022-31160

Reporter: Orange BVPN

Impact:  (CVSS + Path)  6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 

Description: Vulnerabilities where present into previous jQuery UI dependency (prior to 1.13.2).

Reference: CVE-2022-31160