Lucene search
MitreCVE-2022-40043HistorySep 26, 2022 - 4:15 p.m.
CVE-2022-40043
2022-09-2616:15:13
CWE-89
mitre
web.nvd.nist.gov
41
6
centreon
v20.10.18
sql injection
esc_name parameter
configuration
notifications
escalations
cve-2022-40043
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.7%
Centreon v20.10.18 was discovered to contain a SQL injection vulnerability via the esc_name (Escalation Name) parameter at Configuration/Notifications/Escalations.
Affected configurations
Node
centreoncentreonMatch20.10.18
References
Social References
More
Related
cnvd
cnvd
Centreon SQL Injection Vulnerability (CNVD-2022-66770)
2022-09-28 00:00:00
veracode
veracode
SQL Injection
2022-09-27 06:24:12
osv
osv
Centreon SQL Injection vulnerability via esc_name parameter
2022-09-27 00:00:20
github
github
Centreon SQL Injection vulnerability via esc_name parameter
2022-09-27 00:00:20
cvelist
cvelist
CVE-2022-40043
2022-09-26 15:38:17
nvd
nvd
CVE-2022-40043
2022-09-26 16:15:13
prion
prion
Sql injection
2022-09-26 16:15:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.7%
Related for CVE-2022-40043