← Zuruck zu CVEs
CVE-2025-8432
HIGH8.4
Beschreibung
Incorrect Default Permissions vulnerability in Centreon Infra Monitoring (MBI modules) allows Embedding Scripts within Scripts by CentreonBI user account on the MBI server This issue affects Infra Monitoring: from 24.10.0 before 24.10.6, from 24.04.0 before 24.04.9, from 23.10.0 before 23.10.15.
CVE Details
CVSS v3.1 Bewertung8.4
SchweregradHIGH
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienHIGH
BenutzerinteraktionREQUIRED
Veroffentlicht10/27/2025
Zuletzt geandert10/30/2025
Quellenvd
Honeypot-Sichtungen0
Schwachen (CWE)
CWE-276
Referenzen
https://github.com/centreon/centreon/releases(bd4443e6-1eef-43f3-9886-25fc9ceeaae7)
https://thewatch.centreon.com/latest-security-bulletins-64/cve-2025-8432-centreon-mbi-high-severity-5180(bd4443e6-1eef-43f3-9886-25fc9ceeaae7)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.