CVE-2021-27676: XSS
First published: Wed May 26 2021(Updated: )
Centreon version 20.10.2 is affected by a cross-site scripting (XSS) vulnerability. The dep_description (Dependency Description) and dep_name (Dependency Name) parameters are vulnerable to stored XSS. A user has to log in and go to the Configuration > Notifications > Hosts page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Centreon Centreon | =20.10.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2021-27676.
What is the severity of this vulnerability?
The severity of this vulnerability is medium with a CVSS score of 5.4.
How does this vulnerability affect Centreon?
This vulnerability affects Centreon version 20.10.2.
What is the vulnerability type of this vulnerability?
This vulnerability is a cross-site scripting (XSS) vulnerability.
How can I fix this vulnerability?
To fix this vulnerability, update Centreon to a version that is not affected by the vulnerability.
- collector/nvd-index
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- vendor/centreon
- canonical/centreon centreon
- version/centreon centreon/20.10.2