Centreon Authentication Mechanism Security Bypass Vulnerability Network Vulnerability

Summary

Centreon is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and gain unauthorized access to certain functionality, which may lead to further attacks. Versions prior to Centreon 2.1.4 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://www.centreon.com/
http://www.centreon.com/Development/changelog-2x.html
http://www.securityfocus.com/bid/37383

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4368

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
ASP Inline Corporate Calendar SQL injection
Artifectx xClassified 'catid' SQL Injection Vulnerability
Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability
Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities