This page lists publicly disclosed CVE vulnerabilities affecting centreon open_tickets (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-2749 | Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket modules).This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7. | bd4443e6-1eef-43f3-9886-25fc9ceeaae7 | 9.9 | 0.10% | 2026-02-27 | 2026-03-23 |
| CVE-2025-8460 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Centreon Infra Monitoring (Notification rules, Open tickets module) allows Stored XSS by users with elevated privileges.This issue affects Infra Monitoring: from 24.10.0 before 24.10.5, from 24.04.0 before 24.04.5, from 23.10.0 before 23.10.4. | bd4443e6-1eef-43f3-9886-25fc9ceeaae7 | 6.8 | 0.01% | 2025-12-22 | 2026-01-26 |
| CVE-2025-12514 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon Infra Monitoring - Open-tickets (Notification rules configuration parameters, Open tickets modules) allows SQL Injection to user with elevated privileges.This issue affects Infra Monitoring - Open-tickets: from 24.10.0 before 24.10.5, from 24.04.0 before 24.04.5, from 23.10.0 before 23.10.4. | bd4443e6-1eef-43f3-9886-25fc9ceeaae7 | 7.2 | 0.02% | 2025-12-22 | 2026-01-26 |