CVE-2019-17646
First published: Thu Mar 05 2020(Updated: )
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Centreon Centreon | >=18.0.0<18.10.8 | |
| Centreon Centreon | >=19.04.0<19.04.5 | |
| Centreon Centreon | >=19.10.0<19.10.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10.html#centreon-web-18-10-8
- https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html#centreon-web-19-04-5
- https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html#centreon-web-19-10-2
- https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10/index.html
- https://github.com/centreon/centreon/pull/8021
Frequently Asked Questions
What is the severity of CVE-2019-17646?
The severity of CVE-2019-17646 is high, with a severity value of 7.5.
How can I exploit CVE-2019-17646?
CVE-2019-17646 can be exploited by making an unauthenticated direct request to api/external.php?object=centreon_metric&action=listByService to obtain sensitive information.
Which versions of Centreon are affected by CVE-2019-17646?
CVE-2019-17646 affects Centreon versions before 18.10.8, 19.04.5, and 19.10.2.
How do I fix CVE-2019-17646?
To fix CVE-2019-17646, upgrade Centreon to version 18.10.8, 19.04.5, or 19.10.2 or later.
Where can I find more information about CVE-2019-17646?
You can find more information about CVE-2019-17646 in the Centreon release notes: [link1], [link2], [link3].
- collector/nvd-index
- vendor/centreon
- product/centreon
- canonical/centreon centreon