Directory traversal vulnerability in main.php in Merethis Centreon before 2.3.2 allows remote authenticated users to execute arbitrary commands via a .. (dot dot) in the command_name parameter.
History

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.06659}

epss

{'score': 0.05063}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-11-10T00:00:00

Updated: 2024-08-07T00:09:18.326Z

Reserved: 2011-11-09T00:00:00

Link: CVE-2011-4431

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2011-11-10T00:55:00.883

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-4431

cve-icon Redhat

No data.