CVE-2026-2751
Last modified
CVE-2026-2751 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injection.This issue affects Centreon Web on Central Server before 25.10.8, 24.10.20, 24.04.24.. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injection.This issue affects Centreon Web on Central Server before 25.10.8, 24.10.20, 24.04.24.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Centreon | Centreon Web | >= 24.04.0, < 24.04.24. |
| Centreon | Centreon Web | >= 24.10.0, < 24.10.20 |
| Centreon | Centreon Web | >= 25.10.0, < 25.10.8 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-2751?
How severe is CVE-2026-2751?
How do I fix CVE-2026-2751?
Are you affected by CVE-2026-2751?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST