Guillaume Quéré

**Name of the Vulnerable Software and Affected Versions** BMC Patrol versions prior to 22.1.00 **Description** An issue was discovered where the agent's configuration can be remotely queried, containing the Patrol account password encrypted with a default AES key. This account can then be used to achieve remote code execution. **Recommendations** For versions prior to 22.1.00, update to version 22.1.00 or later to resolve the issue. As a temporary workaround, consider restricting access to the agent's configuration to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** BMC Patrol versions through 23.1.00 **Description** An issue was discovered where the agent's configuration can be remotely modified, and by default, authentication is not required. Some configuration fields related to SNMP, such as `masterAgentName` or `masterAgentStartLine`, result in code execution when the agent is restarted. **Recommendations** For BMC Patrol versions through 23.1.00, consider implementing authentication to prevent remote modification of the agent's configuration as a mitigation measure. Restrict access to configuration fields related to SNMP to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 for file versions 8.1.21.266 and earlier **Description** The issue allows unauthenticated remote code execution, which may enable unauthenticated users to execute commands on the system. **Recommendations** For versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 for File versions 8.1.21.266 and earlier **Description** The issue allows unauthenticated users to read or write restricted files due to a path traversal vulnerability. **Recommendations** For Dell VNX2 for File versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 for File versions 8.1.21.266 and earlier **Description** The issue is a privilege escalation vulnerability that can be exploited by a local malicious admin to gain privileges. **Recommendations** For Dell VNX2 for File versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 for File versions 8.1.21.266 and earlier **Description** The issue is a privilege escalation vulnerability that can be exploited by a local malicious admin to gain elevated privileges. **Recommendations** For Dell VNX2 for File versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 OE for File versions 8.1.21.266 and earlier **Description** The issue allows a remote malicious user with privileges to execute commands on the system, due to an authenticated remote code execution vulnerability. **Recommendations** For versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 OE for File versions 8.1.21.266 and earlier **Description** The issue allows a local malicious user to exploit a sensitive information disclosure vulnerability, potentially reading and utilizing sensitive information. **Recommendations** For Dell VNX2 OE for File versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 OE for File versions 8.1.21.266 and earlier **Description** The issue allows a remote malicious user with privileges to execute commands on the system, due to an authenticated remote code execution vulnerability. **Recommendations** For versions 8.1.21.266 and earlier, update to a version later than 8.1.21.266 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Dell VNX2 OE for File versions 8.1.21.266 and earlier **Description** The issue is related to weaknesses in the authentication mechanism of the Dell VNX2 storage system. This can allow a remote attacker to gain unauthorized access to protected information by exploiting the authentication bypass vulnerability. The attacker may forge a cookie to login as any user. **Recommendations** For Dell VNX2 OE for File versions 8.1.21.266 and earlier, consider disabling the authentication mechanism temporarily until a patch is available. Restrict access to the system to minimize the risk of exploitation. Avoid using forged cookies in the affected system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.28 **Description** The issue allows attackers to disclose information or perform a stored XSS attack on a user through local file inclusion in the brokerPerformance.php file. **Recommendations** For versions prior to 2.8.28, update to version 2.8.28 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon VM versions prior to 19.04.3 Apache HTTP Server (affected versions not specified) **Description** The issue is related to errors in processing cookie files in the Apache HTTP Server within the Centreon VM. This can allow a remote attacker to disclose protected information. Specifically, the cookie configuration does not protect against theft because the HTTPOnly flag is not set. **Recommendations** For Centreon VM versions prior to 19.04.3, update to version 19.04.3 or later to resolve the issue. As a temporary workaround, consider setting the HTTPOnly flag for cookies in the Apache HTTP Server configuration to protect against cookie theft.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.27 **Description** A PHP type juggling issue in the centreonAuth.class.php file allows attackers to bypass existing authentication mechanisms in rare cases. **Recommendations** For versions prior to 2.8.27, update to version 2.8.27 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.27 **Description** The issue allows attackers to perform SQL injections via the `host id` parameter in the img gantt.php file. **Recommendations** For versions prior to 2.8.27, update to version 2.8.27 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.28 **Description** The issue allows attackers to perform SQL injections via the `host id` parameter in the makeXML ListServices.php file. **Recommendations** For versions prior to 2.8.28, update to version 2.8.28 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.28 **Description** The issue allows authenticated attackers to execute arbitrary code. This is achieved via the `ns id` parameter in the "getStats.php" file. **Recommendations** For versions prior to 2.8.28, update to version 2.8.28 or later to resolve the issue. As a temporary workaround, consider restricting access to the "getStats.php" file until a patch is applied. Avoid using the `ns id` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.27 **Description** The issue allows attackers to upload arbitrary files via a POST request to the licenseUpload.php file. **Recommendations** For versions prior to 2.8.27, update to version 2.8.27 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon VM versions prior to 19.04.4 **Description** The issue allows attackers to gain root access through a crafted script, due to incorrect rights of sourced configuration files in the centreon-backup.pl script. **Recommendations** For Centreon VM versions prior to 19.04.4, update to version 19.04.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.27 **Description** The issue concerns a predictable token generator in the index.php file. This predictability could potentially be exploited. **Recommendations** For versions prior to 2.8.27, update to version 2.8.27 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Centreon Web versions prior to 2.8.30 **Description** The issue allows authenticated attackers to disclose passwords of external components, potentially enabling lateral movement to these components. **Recommendations** For Centreon Web versions prior to 2.8.30, update to version 2.8.30 or later to resolve the issue.