Описание
Centreon Sensitive Data Exposure vulnerability
Centreon before 19.10.7 exposes Session IDs in server responses.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-10945
- https://github.com/centreon/centreon-archived/pull/8291
- https://github.com/centreon/centreon-archived/commit/02a3248602ce194fbb098af34be4652565db2468
- https://github.com/centreon/centreon-archived/commit/1c14a8ee07225836bdd2ca480e47a63070a11bb9
- https://github.com/centreon/centreon-archived/commit/afa0ee6d43d22860ae435163559912696569fc2f
- https://github.com/centreon/centreon-archived/commit/fbee38536960eecaf52eda2bf31b90859c018b66
- https://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure
Пакеты
Наименование
centreon/centreon
composer
Затронутые версииВерсия исправления
>= 19.10.0, < 19.10.7
19.10.7
Наименование
centreon/centreon
composer
Затронутые версииВерсия исправления
>= 19.0.0, < 19.04.10
19.04.10
Наименование
centreon/centreon
composer
Затронутые версииВерсия исправления
>= 18.0.0, < 18.10.11
18.10.11
Наименование
centreon/centreon
composer
Затронутые версииВерсия исправления
< 2.8.32
2.8.32
Связанные уязвимости
CVSS3: 4.3
ubuntu
больше 5 лет назад
Centreon before 19.10.7 exposes Session IDs in server responses.
CVSS3: 4.3
nvd
больше 5 лет назад
Centreon before 19.10.7 exposes Session IDs in server responses.