Multiple Vulnerabilities Discovered in Centreon Products

📌 Multiple vulnerabilities were discovered in Centreon products on 12 May 2026, enabling attackers to execute arbitrary remote code, perform SQL injection (SQLi), and conduct remote indirect code injection (XSS). The flaws affect unspecified versions of Centreon’s software, with no CVE IDs or additional technical details provided in the notice. The impacts include unauthorized remote code execution, database manipulation via SQLi, and potential client-side exploitation through XSS. The advisory was issued by the French government’s CERT (CERT-FR) under reference CERTFR-2026-AVI-0572. No mitigation steps or affected component specifics were disclosed in the reported content.