HTTP: Centreon ServerConnectionConfigurationService.php Command Injection
This signature detects attempts to exploit a known vulnerability against Centreon Web Application. A successful attack can lead to command injection and arbitrary code execution.
Extended Description
Centreon 19.10 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the server_ip field in JSON data in an api/internal.php?object=centreon_configuration_remote request.
Affected Products
Centreon centreon
References
CVE: CVE-2020-9463
URL: https://code610.blogspot.com/2020/02/postauth-rce-in-centreon-1910.html
Short Name
HTTP:CTS:CNTREON-SRVRCONCONF-CI
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2020-9463 Centreon Command Injection ServerConnectionConfigurationService.php
Release Date
03/24/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3693
False Positive
Unknown
Vendors
Centreon
CVSS Score
9.0