Vulnerabilities > Centreon > Centreon > 20.10.4

DATE CVE VULNERABILITY TITLE RISK
2023-03-29 CVE-2022-42424 Unspecified vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon
8.8
8.8
2023-03-29 CVE-2022-42425 Unspecified vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon
8.8
8.8
2023-03-29 CVE-2022-42426 Unspecified vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon
8.8
8.8
2023-03-29 CVE-2022-42427 Unspecified vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon
8.8
8.8
2023-03-29 CVE-2022-42428 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42429 Unspecified vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon
8.8
8.8
2022-11-02 CVE-2022-3827 Unspecified vulnerability in Centreon
A vulnerability was found in centreon.
network
low complexity
centreon
critical
 9.8
9.8
2021-08-03 CVE-2021-37556 SQL Injection vulnerability in Centreon
A SQL injection vulnerability in reporting export in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote authenticated (but low-privileged) attackers to execute arbitrary SQL commands via the include/reporting/dashboard/csvExport/csv_HostGroupLogs.php start and end parameters.
network
low complexity
centreon CWE-89
8.8
8.8
2021-08-03 CVE-2021-37557 SQL Injection vulnerability in Centreon
A SQL injection vulnerability in image generation in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote authenticated (but low-privileged) attackers to execute arbitrary SQL commands via the include/views/graphs/generateGraphs/generateImage.php index parameter.
network
low complexity
centreon CWE-89
8.8
8.8
2021-08-03 CVE-2021-37558 SQL Injection vulnerability in Centreon
A SQL injection vulnerability in a MediaWiki script in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated attackers to execute arbitrary SQL commands via the host_name and service_description parameters.
network
low complexity
centreon CWE-89
critical
 9.8
9.8