cvedb.io
CVE-2024-55573
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2025-01-23T23:15:08.113 · Last modified 2026-06-17T08:11:15.947

Summary

An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x before 23.10.19, 23.04.x before 23.04.24. A user with high privileges is able to inject SQL into the form used to create virtual metrics.

Affected products

centreon — centreon_web

Does this affect you?

Add your gear to cvedb and we'll alert you only when centreon ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.