Vulnerabilities > Merethis > Centreon > 1.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-11-10 | CVE-2011-4432 | Cryptographic Issues vulnerability in Merethis Centreon www/include/configuration/nconfigObject/contact/DB-Func.php in Merethis Centreon before 2.3.2 does not use a salt during calculation of a password hash, which makes it easier for context-dependent attackers to determine cleartext passwords via a rainbow-table approach. | 5.0 |
2011-11-10 | CVE-2011-4431 | Path Traversal vulnerability in Merethis Centreon Directory traversal vulnerability in main.php in Merethis Centreon before 2.3.2 allows remote authenticated users to execute arbitrary commands via a .. | 6.5 |
2009-12-21 | CVE-2009-4368 | Authentication Mechanism Security Bypass vulnerability in Centreon Multiple unspecified vulnerabilities in Centreon before 2.1.4 have unknown impact and attack vectors in the (1) ping tool, (2) traceroute tool, and (3) ldap import, possibly related to improper authentication. | 10.0 |