CVE-2014-3829

Centreon < 2.5.1 / Centreon Enterprise Server < 2.2 - SQL Injection / Command Injection

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

displayServiceStatus.php in Centreon 2.5.1 and Centreon Enterprise Server 2.2 (fixed in Centreon web 2.5.3) allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) session_id or (2) template_id parameter, related to the command_line variable.

El archivo displayServiceStatus.php en Centreon versión 2.5.1 y Centreon Enterprise Server versión 2.2 (corregido en Centreon web versión 2.5.3), permite a atacantes ejecutar comandos arbitrarios por medio de metacaracteres de shell en el parámetro (1) session_id o (2) template_id, relacionado con la variable command_line.

Centreon versions 2.5.2 and below and Centreon Enterprise Server versions 2.2 and below and 3.0 and below suffer from remote SQL injection and remote command injection vulnerabilities.

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2014-05-22 CVE Reserved
2014-10-15 First Exploit
2014-10-18 CVE Published
2024-08-06 CVE Updated
2024-10-21 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-94: Improper Control of Generation of Code ('Code Injection')

CAPEC

References (6)

URL	Tag	Source
http://www.kb.cert.org/vuls/id/298796	Third Party Advisory
https://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.5/centreon-2.5.3.html	X_refsource_confirm
https://github.com/centreon/centreon/commit/cc2109804dd69057cb209037113796ec5ffdce90#diff-e328097503b14fbb117e0db798aefcde	X_refsource_confirm
https://seclists.org/fulldisclosure/2014/Oct/78

URL	Date	SRC
https://www.exploit-db.com/exploits/41676	2014-10-15
http://seclists.org/fulldisclosure/2014/Oct/78	2024-08-06

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Merethis Search vendor "Merethis"		Centreon Search vendor "Merethis" for product "Centreon"				2.5.1 Search vendor "Merethis" for product "Centreon" and version "2.5.1"		-		Affected
Merethis Search vendor "Merethis"		Centreon Enterprise Server Search vendor "Merethis" for product "Centreon Enterprise Server"				2.2 Search vendor "Merethis" for product "Centreon Enterprise Server" and version "2.2"		-		Affected