Vulnerability-Lookup

CNVD-2015-04479

Vulnerability from cnvd - Published: 2015-07-15

Title

Merethis Centreon‘getStats.php’远程命令执行漏洞

Description

Merethis Centreon是法国Merethis公司的一套需要与Nagios搭配使用的开源IT监控软件，它通过网页（Web）管理Nagios，以及通过第三方组件实现对网络、操作系统和应用程序的监控。 Merethis Centreon中存在远程命令执行漏洞，该漏洞源于程序未能充分过滤用户提交的输入。攻击者可利用该漏洞在受影响应用程序上下文中执行任意命令。

Severity

高

Patch Name

Merethis Centreon‘getStats.php’远程命令执行漏洞的补丁

Patch Description

Merethis Centreon是法国Merethis公司的一套需要与Nagios搭配使用的开源IT监控软件，它通过网页（Web）管理Nagios，以及通过第三方组件实现对网络、操作系统和应用程序的监控。Merethis Centreon中存在远程命令执行漏洞，该漏洞源于程序未能充分过滤用户提交的输入。攻击者可利用该漏洞在受影响应用程序上下文中执行任意命令。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，详情请关注厂商主页： https://www.centreon.com/

Reference

http://www.securityfocus.com/bid/75605

Impacted products

Name
Merethis Centreon

Show details on source website

JSON

To clipboard Create KEV Entry

{
  "bids": {
    "bid": {
      "bidNumber": "75605"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-1561"
    }
  },
  "description": "Merethis Centreon\u662f\u6cd5\u56fdMerethis\u516c\u53f8\u7684\u4e00\u5957\u9700\u8981\u4e0eNagios\u642d\u914d\u4f7f\u7528\u7684\u5f00\u6e90IT\u76d1\u63a7\u8f6f\u4ef6\uff0c\u5b83\u901a\u8fc7\u7f51\u9875\uff08Web\uff09\u7ba1\u7406Nagios\uff0c\u4ee5\u53ca\u901a\u8fc7\u7b2c\u4e09\u65b9\u7ec4\u4ef6\u5b9e\u73b0\u5bf9\u7f51\u7edc\u3001\u64cd\u4f5c\u7cfb\u7edf\u548c\u5e94\u7528\u7a0b\u5e8f\u7684\u76d1\u63a7\u3002\r\n\r\nMerethis Centreon\u4e2d\u5b58\u5728\u8fdc\u7a0b\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u8fc7\u6ee4\u7528\u6237\u63d0\u4ea4\u7684\u8f93\u5165\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u5e94\u7528\u7a0b\u5e8f\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4efb\u610f\u547d\u4ee4\u3002",
  "discovererName": "hdau",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.centreon.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-04479",
  "openTime": "2015-07-15",
  "patchDescription": "Merethis Centreon\u662f\u6cd5\u56fdMerethis\u516c\u53f8\u7684\u4e00\u5957\u9700\u8981\u4e0eNagios\u642d\u914d\u4f7f\u7528\u7684\u5f00\u6e90IT\u76d1\u63a7\u8f6f\u4ef6\uff0c\u5b83\u901a\u8fc7\u7f51\u9875\uff08Web\uff09\u7ba1\u7406Nagios\uff0c\u4ee5\u53ca\u901a\u8fc7\u7b2c\u4e09\u65b9\u7ec4\u4ef6\u5b9e\u73b0\u5bf9\u7f51\u7edc\u3001\u64cd\u4f5c\u7cfb\u7edf\u548c\u5e94\u7528\u7a0b\u5e8f\u7684\u76d1\u63a7\u3002Merethis Centreon\u4e2d\u5b58\u5728\u8fdc\u7a0b\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u8fc7\u6ee4\u7528\u6237\u63d0\u4ea4\u7684\u8f93\u5165\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u5e94\u7528\u7a0b\u5e8f\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4efb\u610f\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Merethis Centreon\u2018getStats.php\u2019\u8fdc\u7a0b\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Merethis Centreon"
  },
  "referenceLink": "http://www.securityfocus.com/bid/75605",
  "serverity": "\u9ad8",
  "submitTime": "2015-07-14",
  "title": "Merethis Centreon\u2018getStats.php\u2019\u8fdc\u7a0b\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e"
}

CVE-2015-1561 (GCVE-0-2015-1561)

Vulnerability from cvelistv5 – Published: 2015-07-14 16:00 – Updated: 2024-08-06 04:47

Summary

The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ns_id parameter.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://packetstormsecurity.com/files/132607/Meret…	x_refsource_MISC
	https://forge.centreon.com/projects/centreon/repo…	x_refsource_CONFIRM
	http://www.securityfocus.com/archive/1/535961/100…	mailing-listx_refsource_BUGTRAQ
	https://github.com/centreon/centreon/commit/a78c6…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard Create KEV Entry

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:47:17.155Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/132607/Merethis-Centreon-2.5.4-SQL-Injection-Remote-Command-Execution.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://forge.centreon.com/projects/centreon/repository/revisions/387dffdd051dbc7a234e1138a9d06f3089bb55bb"
          },
          {
            "name": "20150708 Merethis Centreon - Unauthenticated blind SQLi and Authenticated Remote Command Execution",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/535961/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/centreon/centreon/commit/a78c60aad6fd5af9b51a6d5de5d65560ea37a98a#diff-27550b563fa8d660b64bca871a219cb1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-07-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ns_id parameter."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-07-30T19:09:44",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/132607/Merethis-Centreon-2.5.4-SQL-Injection-Remote-Command-Execution.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://forge.centreon.com/projects/centreon/repository/revisions/387dffdd051dbc7a234e1138a9d06f3089bb55bb"
        },
        {
          "name": "20150708 Merethis Centreon - Unauthenticated blind SQLi and Authenticated Remote Command Execution",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/535961/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/centreon/centreon/commit/a78c60aad6fd5af9b51a6d5de5d65560ea37a98a#diff-27550b563fa8d660b64bca871a219cb1"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-1561",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ns_id parameter."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://packetstormsecurity.com/files/132607/Merethis-Centreon-2.5.4-SQL-Injection-Remote-Command-Execution.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/132607/Merethis-Centreon-2.5.4-SQL-Injection-Remote-Command-Execution.html"
            },
            {
              "name": "https://forge.centreon.com/projects/centreon/repository/revisions/387dffdd051dbc7a234e1138a9d06f3089bb55bb",
              "refsource": "CONFIRM",
              "url": "https://forge.centreon.com/projects/centreon/repository/revisions/387dffdd051dbc7a234e1138a9d06f3089bb55bb"
            },
            {
              "name": "20150708 Merethis Centreon - Unauthenticated blind SQLi and Authenticated Remote Command Execution",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/535961/100/0/threaded"
            },
            {
              "name": "https://github.com/centreon/centreon/commit/a78c60aad6fd5af9b51a6d5de5d65560ea37a98a#diff-27550b563fa8d660b64bca871a219cb1",
              "refsource": "MISC",
              "url": "https://github.com/centreon/centreon/commit/a78c60aad6fd5af9b51a6d5de5d65560ea37a98a#diff-27550b563fa8d660b64bca871a219cb1"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-1561",
    "datePublished": "2015-07-14T16:00:00",
    "dateReserved": "2015-02-08T00:00:00",
    "dateUpdated": "2024-08-06T04:47:17.155Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2015-04479

CVE-2015-1561 (GCVE-0-2015-1561)

Tags

Sightings

Nomenclature