CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-12514

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon Infra Monitoring - Open-tickets (Notification rules configuration parameters, Open tickets modules) allows SQL Injection to user with elevated privileges.This issue affects Infra Monitoring - Open-tickets: from 24.10.0 before 24.10.5, from 24.04.0 before 24.04.5, from 23.10.0 before 23.10.4.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.8%

CVSS Severity

CVSS v3 Score 7.2

References

https://github.com/centreon/centreon/releases
https://thewatch.centreon.com/latest-security-bulletins-64/cve-2025-12514-centreon-open-tickets-high-severity-5343

Products affected by CVE-2025-12514

Centreon » Open Tickets » Version: Any

cpe:2.3:a:centreon:open_tickets:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-12514

Products

Pricing

Contact Us