Primary

Context

Centreon Open Tickets Improper Input Validation Vulnerability Allowing Remote Code Execution

Vulnerability

Patched

A vulnerability allowing remote code execution has been identified in the Centreon Open Tickets module on Central Server running Linux. This issue arises from improper input validation and affects Centreon versions prior to 25.10, as well as versions 24.10 and 24.04.

Impact

The vulnerability allows remote code execution on the server where Centreon Open Tickets is installed.

Remediation

Users are advised to update to Centreon Web versions 25.10.8, 24.10.20, or 24.04.24, all of which include cumulative fixes from prior updates. For those on a High Availability Platform, it is important to follow the Centreon HA Update procedures.

Added: Feb 27, 2026, 4:18 PM

Updated: Feb 27, 2026, 4:18 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

10.0

exploitability

4.8

remediation

7.7

relevance

3.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

10.0

exploitability

4.8

remediation

7.7

relevance

3.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Centreon Open Tickets Improper Input Validation Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Centreon Open Tickets

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating