CVE-2020-10945
MEDIUM4.3EPSS 0.04%Centreon Sensitive Data Exposure vulnerability
發布日:2022/5/24修改日:2024/2/18
描述
Centreon before 19.10.7 exposes Session IDs in server responses.
受影響套件(1)
- Packagist/centreon/centreon>= 19.10.0, < 19.10.7
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
參考連結(8)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-10945
- PATCHhttps://github.com/centreon/centreon
- WEBhttps://github.com/centreon/centreon-archived/commit/02a3248602ce194fbb098af34be4652565db2468
- WEBhttps://github.com/centreon/centreon-archived/commit/1c14a8ee07225836bdd2ca480e47a63070a11bb9
- WEBhttps://github.com/centreon/centreon-archived/commit/afa0ee6d43d22860ae435163559912696569fc2f
- WEBhttps://github.com/centreon/centreon-archived/commit/fbee38536960eecaf52eda2bf31b90859c018b66
- WEBhttps://github.com/centreon/centreon-archived/pull/8291
- WEBhttps://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure