Vulnerabilities > Centreon > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-29 CVE-2022-42424 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42425 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42426 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42427 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42428 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-03-29 CVE-2022-42429 SQL Injection vulnerability in Centreon
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2023-01-26 CVE-2022-41142 SQL Injection vulnerability in Centreon 22.04.2
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
8.8
8.8
2022-09-26 CVE-2022-40043 SQL Injection vulnerability in Centreon 20.10.18
Centreon v20.10.18 was discovered to contain a SQL injection vulnerability via the esc_name (Escalation Name) parameter at Configuration/Notifications/Escalations.
network
low complexity
centreon CWE-89
8.8
8.8
2022-08-03 CVE-2022-34871 SQL Injection vulnerability in Centreon 21.10.2
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon.
network
low complexity
centreon CWE-89
7.2
7.2
2021-08-18 CVE-2020-22345 OS Command Injection vulnerability in Centreon 19.10.8
/graphStatus/displayServiceStatus.php in Centreon 19.10.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the RRDdatabase_path parameter.
network
low complexity
centreon CWE-78
8.8
8.8