Default configuration

2020-03-0517:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.4%

JSON

An issue was discovered in Centreon before 2.8.31, 18.10.9, 19.04.6, and 19.10.3. It provides sensitive information via an unauthenticated direct request for include/configuration/configObject/service/refreshMacroAjax.php.

CPENameOperatorVersion
centreonlt2.8.31
centreonge18.0.0
centreonlt18.10.9
centreonge19.04.0
centreonlt19.04.6
centreonge19.10.0
centreonlt19.10.3

Name	Operator	Version
centreon	lt	2.8.31
centreon	ge	18.0.0
centreon	lt	18.10.9
centreon	ge	19.04.0
centreon	lt	19.04.6
centreon	ge	19.10.0
centreon	lt	19.10.3

References

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10/index.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.8.html

github.com/centreon/centreon/pull/8035