Security Advisory

CVE-2021-26804

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-04 16:49:02

Last updated 2024-08-03 20:33:41

Assigner mitre

State PUBLISHED

Description

Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to ".gif", then uploading it in the "Administration/ Parameters/ Images" section of the application.

← Browse all CVEs View on cve.org ↗