CVE-2019-17643

Name of the Vulnerable Software and Affected Versions Centreon versions prior to 2.8-30 Centreon versions prior to 18.10-8 Centreon versions prior to 19.04-5 Centreon versions prior to 19.10-2

Description The issue provides sensitive information via an unauthenticated direct request for the "include/monitoring/recurrentDowntime/GetXMLHost4Services.php" endpoint.

Recommendations For Centreon versions prior to 2.8-30, update to version 2.8-30 or later. For Centreon versions prior to 18.10-8, update to version 18.10-8 or later. For Centreon versions prior to 19.04-5, update to version 19.04-5 or later. For Centreon versions prior to 19.10-2, update to version 19.10-2 or later.