Vulnerabilities > Centreon > Centreon > 20.10.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-03-29 | CVE-2022-42424 | Unspecified vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2023-03-29 | CVE-2022-42425 | Unspecified vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2023-03-29 | CVE-2022-42426 | Unspecified vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2023-03-29 | CVE-2022-42427 | Unspecified vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2023-03-29 | CVE-2022-42428 | SQL Injection vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2023-03-29 | CVE-2022-42429 | Unspecified vulnerability in Centreon This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. | 8.8 |
2022-11-02 | CVE-2022-3827 | Unspecified vulnerability in Centreon A vulnerability was found in centreon. | 9.8 |
2021-08-03 | CVE-2021-37556 | SQL Injection vulnerability in Centreon A SQL injection vulnerability in reporting export in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote authenticated (but low-privileged) attackers to execute arbitrary SQL commands via the include/reporting/dashboard/csvExport/csv_HostGroupLogs.php start and end parameters. | 8.8 |
2021-08-03 | CVE-2021-37557 | SQL Injection vulnerability in Centreon A SQL injection vulnerability in image generation in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote authenticated (but low-privileged) attackers to execute arbitrary SQL commands via the include/views/graphs/generateGraphs/generateImage.php index parameter. | 8.8 |
2021-08-03 | CVE-2021-37558 | SQL Injection vulnerability in Centreon A SQL injection vulnerability in a MediaWiki script in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated attackers to execute arbitrary SQL commands via the host_name and service_description parameters. | 9.8 |