|Check Point Reference:||CPAI-2019-2041|
|Date Published:||21 Apr 2020|
|Last Updated:||Tuesday 21 April, 2020|
|Protection Provided by:||
|Who is Vulnerable?||Centreon Project Centreon Web through 19.04.3|
|Vulnerability Description||A command injection vulnerability exists in the Centreon Web Application. Successful exploitation of this vulnerability could result in arbitrary command execution in the context of the server process.|
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Web Server Enforcement Violation.
Attack Information: Centreon formMibs.php Command Injection (CVE-2019-15298)