ZDI-24-1323: Centreon updateContactContactGroup SQL Injection Privilege Escalation Vulnerability

Read Time:12 Second

This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 4.7. The following CVEs are assigned: CVE-2024-39843.

python-virtualenv-20.21.1-25.el10_0~bootstrap

FEDORA-EPEL-2024-34cd7a65de Packages in this update: python-virtualenv-20.21.1-25.el10_0~bootstrap Update description: Prevent command injection by quoting template strings in activation scripts Read More

October 8, 2024

python-virtualenv-20.21.1-25.fc41

FEDORA-2024-89014f5794 Packages in this update: python-virtualenv-20.21.1-25.fc41 Update description: Prevent command injection by quoting template strings in activation scripts Read More

October 8, 2024

python-virtualenv-20.21.1-25.fc40

FEDORA-2024-112e897674 Packages in this update: python-virtualenv-20.21.1-25.fc40 Update description: Prevent command injection by quoting template strings in activation scripts Read More

October 8, 2024

python-virtualenv-20.21.1-25.fc39

FEDORA-2024-f7d6b76677 Packages in this update: python-virtualenv-20.21.1-25.fc39 Update description: Prevent command injection by quoting template strings in activation scripts Read More

October 8, 2024