Centreon Web 19.04.4 has weak permissions within the OVA (aka VMware virtual machine) and OVF (aka VirtualBox virtual machine) files, allowing attackers to gain privileges via a Trojan horse Centreon-autodisco executable file that is launched by cron.
References
Configurations
History
No history.
Information
Published : 2019-11-21 18:15
Updated : 2024-02-28 17:28
NVD link : CVE-2019-16406
Mitre link : CVE-2019-16406
CVE.ORG link : CVE-2019-16406
JSON object : View
Products Affected
centreon
- centreon_web
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource