Description
Centreon v20.10.18 was discovered to contain a SQL injection vulnerability via the esc_name (Escalation Name) parameter at Configuration/Notifications/Escalations.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-6653 | Centreon v20.10.18 was discovered to contain a SQL injection vulnerability via the esc_name (Escalation Name) parameter at Configuration/Notifications/Escalations. |
Github GHSA |
GHSA-25gv-wg6f-6frp | Centreon SQL Injection vulnerability via esc_name parameter |
References
History
Wed, 21 May 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-05-21T15:16:24.176Z
Reserved: 2022-09-06T00:00:00.000Z
Link: CVE-2022-40043
Updated: 2024-08-03T12:14:38.723Z
Status : Modified
Published: 2022-09-26T16:15:13.957
Modified: 2026-06-17T05:00:48.820
Link: CVE-2022-40043
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
EUVD
Github GHSA