CNNVD-202510-1988 Information
CNNVD ID
CNNVD-202510-1988
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Centreon是法国Centreon公司的一套开源的系统监控工具 。该产品主要提供对网络、系统和应用程序等资源的监控功能。 Centreon 24.10.0版本至24.10.13之前版本、24.04.0版本至24.04.18之前版本和23.10.0版本至23.10.28之前版本存在安全漏洞,该漏洞源于对OS命令中特殊元素中和不当,可能导致OS命令注入攻击。
Description (English)
Centreon is an open-source system monitoring tool for Centreon in France. The product mainly provides a monitoring function for resources such as networks, systems and applications. Centreon 24.10.0 to 24.10.13, 24.04.0 to 24.04.18 and 23.0.0 to 23.10.28 had a security loophole, which stemmed from the inaccuracy of special elements in an OS order and could lead to an OS order being injected into the attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Centreon
Published
2025-10-14
Last Modified
2026-02-24
References
https://thewatch.centreon.com/latest-security-bulletins-64/cve-2025-5946-centreon-web-all-versions-high-severity-5104 https://github.com/centreon/centreon/releases https://vigilance.fr/vulnerability/Centreon-Web-multiple-vulnerabilities-dated-24-09-2025-48301 https://access.redhat.com/security/cve/cve-2025-5946
Patch
https://github.com/centreon/centreon/releases
Share on: