First published: Thu Jan 26 2023(Updated: )
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of requests to configure poller resources. The issue results from the lack of proper validation of a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to escalate privileges to the level of an administrator.
Credit: zdi-disclosures@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Centreon Centreon | =22.04.2 | |
Centreon Centreon |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-41142 is a vulnerability that allows remote attackers to escalate privileges on Centreon installations.
CVE-2022-41142 has a severity score of 8.8, which is considered high.
CVE-2022-41142 affects Centreon installations, allowing remote attackers to escalate privileges.
Yes, authentication is required to exploit CVE-2022-41142.
To fix CVE-2022-41142, apply the necessary updates and patches provided by Centreon.