Remi Millerand

**Name of the Vulnerable Software and Affected Versions** Centreon BAM versions 23.04 through 23.04.9 Centreon BAM versions 23.10 through 23.10.9 Centreon BAM versions 24.04 through 24.04.4 Centreon BAM versions 24.10 through 24.10.0 **Description** The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This vulnerability affects the Boolean KPi Listing modules in Centreon BAM and is accessible only to authenticated users with high privileges. **Recommendations** For Centreon BAM versions 23.04 through 23.04.9, update to version 23.04.10. For Centreon BAM versions 23.10 through 23.10.9, update to version 23.10.10. For Centreon BAM versions 24.04 through 24.04.4, update to version 24.04.5. For Centreon BAM versions 24.10 through 24.10.0, update to version 24.10.1.