Centreon Web 19.04.4 has weak permissions within the OVA (aka VMware virtual machine) and OVF (aka VirtualBox virtual machine) files, allowing attackers to gain privileges via a Trojan horse Centreon-autodisco executable file that is launched by cron.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-11-21T17:36:59
Updated: 2020-03-06T19:42:36
Reserved: 2019-09-18T00:00:00
Link: CVE-2019-16406
JSON object: View
NVD Information
Status : Modified
Published: 2019-11-21T18:15:11.180
Modified: 2020-03-06T20:15:12.080
Link: CVE-2019-16406
JSON object: View
Redhat Information
No data.
CWE