PT-2019-15174 · Centreon · Centreon

Payl0Ad

Published

2019-10-14

Updated

2019-12-18

CVE-2019-17501

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Centreon 19.04 allows attackers to execute arbitrary OS commands via the Command Line field of main.php?p=60807&type=4 (aka the Configuration > Commands > Discovery screen). CVE-2019-17501 and CVE-2019-16405 are similar to one another and may be the same.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2019-17501

Affected Products

Centreon

PT-2019-15174 · Centreon · Centreon

CVE-2019-17501

Weakness Enumeration

Related Identifiers

Affected Products

References · 3