An issue was discovered in Centreon before 2.8-30, 18.10-8, 19.04-5, and 19.10-2.. It provides sensitive information via an unauthenticated direct request for include/configuration/configObject/host/refreshMacroAjax.php.
References
Link | Resource |
---|---|
https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10/index.html | Vendor Advisory |
Information
Published : 2020-03-04 14:15
Updated : 2021-07-21 04:39
NVD link : CVE-2019-17644
Mitre link : CVE-2019-17644
JSON object : View
CWE
CWE-425
Direct Request ('Forced Browsing')
Products Affected
centreon
- centreon