CVE-2019-17645

Name of the Vulnerable Software and Affected Versions Centreon versions prior to 2.8.31 Centreon versions prior to 18.10.9 Centreon versions prior to 19.04.6 Centreon versions prior to 19.10.3

Description The issue provides sensitive information via an unauthenticated direct request for the "include/configuration/configObject/service/refreshMacroAjax.php" endpoint.

Recommendations For versions prior to 2.8.31, update to version 2.8.31 or later. For versions prior to 18.10.9, update to version 18.10.9 or later. For versions prior to 19.04.6, update to version 19.04.6 or later. For versions prior to 19.10.3, update to version 19.10.3 or later.