CVE-2019-17645

An issue was discovered in Centreon before 2.8.31, 18.10.9, 19.04.6, and 19.10.3. It provides sensitive information via an unauthenticated direct request for include/configuration/configObject/service/refreshMacroAjax.php.
Configurations

Configuration 1

cpe:2.3:a:centreon:centreon:*:*:*:*:*:*:*:*
cpe:2.3:a:centreon:centreon:*:*:*:*:*:*:*:*
cpe:2.3:a:centreon:centreon:*:*:*:*:*:*:*:*
cpe:2.3:a:centreon:centreon:*:*:*:*:*:*:*:*

Information

Published : 2020-03-05 05:15

Updated : 2021-07-21 11:39


NVD link : CVE-2019-17645

Mitre link : CVE-2019-17645

Products Affected
No products.
CWE
CWE-425

Direct Request ('Forced Browsing')