HTTP: Centreon Web Poller Resource SQL Injection
This signature detects attempts to exploit a known vulnerability against Centreon Web Poller Resource. A successful attack can lead to command injection and arbitrary code execution.
Extended Description
An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x before 23.10.19, 23.04.x before 23.04.24. A user with high privileges is able to inject SQL into the form used to create virtual metrics.
Affected Products
Centreon centreon_web
References
CVE: CVE-2024-55573
URL: http://www.zerodayinitiative.com/advisories/ZDI-22-1394/ http://www.zerodayinitiative.com/advisories/ZDI-22-1395/ http://www.zerodayinitiative.com/advisories/ZDI-22-1398/ https://github.com/centreon/centreon/security/policy http://www.zerodayinitiative.com/advisories/ZDI-24-118/ http://www.zerodayinitiative.com/advisories/ZDI-24-116/ http://www.zerodayinitiative.com/advisories/ZDI-24-117/ http://www.zerodayinitiative.com/advisories/ZDI-24-115/ http://www.zerodayinitiative.com/advisories/ZDI-24-113/ http://www.zerodayinitiative.com/advisories/ZDI-24-595/ http://www.zerodayinitiative.com/advisories/ZDI-24-596/
Short Name
HTTP:SQL:INJ:CENTREON-WEB
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2022-41142 CVE-2022-42424 CVE-2022-42427 CVE-2022-42429 CVE-2024-0637 CVE-2024-23115 CVE-2024-23116 CVE-2024-23117 CVE-2024-23119 CVE-2024-32501 CVE-2024-55573 CVE-2024-5723 Centreon Injection Poller Resource SQL Web
Release Date
11/10/2022
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3815
False Positive
Unknown
Vendors
Centreon