{"id":"CVE-2024-33853","details":"A SQL Injection vulnerability exists in the Timeperiod component in Centreon Web 24.04.x before 24.04.3, 23.10.x before 23.10.13, 23.04.x before 23.04.19, and 22.10.x before 22.10.23.","modified":"2026-05-18T05:56:56.442815412Z","published":"2024-08-23T00:00:00Z","database_specific":{"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33853.json"},"references":[{"type":"WEB","url":"https://thewatch.centreon.com/latest-security-bulletins-64/security-bulletin-for-centreon-web-3744"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33853.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33853"},{"type":"PACKAGE","url":"https://github.com/centreon/centreon/releases"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/centreon/centreon","events":[{"introduced":"424c7902ba197d695862042500e5ee98e241baa6"},{"fixed":"b16b10c6d761d27567ec3207eaee36737ea90d43"}]}],"versions":["centreon-web-22.10.22","centreon-gorgone-22.10.7","centreon-web-22.10.21","centreon-gorgone-22.10.6","centreon-web-22.10.20","centreon-gorgone-22.10.5","centreon-web-22.10.19","centreon-open-tickets-22.10.3","centreon-gorgone-22.10.4","centreon-web-22.10.18","centreon-web-22.10.17","centreon-web-22.10.16","centreon-widget-tactical-overview-22.10.1","centreon-widget-single-metric-22.10.1","centreon-widget-servicegroup-monitoring-22.10.1","centreon-widget-service-monitoring-22.10.3","centreon-widget-live-top10-memory-usage-22.10.1","centreon-widget-live-top10-cpu-usage-22.10.1","centreon-widget-hostgroup-monitoring-22.10.1","centreon-widget-host-monitoring-22.10.1","centreon-widget-graph-monitoring-22.10.1","centreon-widget-global-health-22.10.1","centreon-widget-engine-status-22.10.1","centreon-web-22.10.15","centreon-gorgone-22.10.3","centreon-web-22.10.14","centreon-web-22.10.13","centreon-web-22.10.12","centreon-web-22.10.11","centreon-open-tickets-22.10.2","centreon-ha-22.10.1","centreon-gorgone-22.10.2","centreon-web-22.10.10","centreon-web-22.10.9","centreon-web-22.10.8","centreon-open-tickets-22.10.1","centreon-gorgone-22.10.1","centreon-dsm-22.10.1","centreon-web-22.10.7","centreon-widget-service-monitoring-22.10.2","centreon-web-22.10.6","centreon-web-22.10.5","centreon-web-22.10.4","centreon-web-22.10.3","centreon-widget-tactical-overview-22.10.0","centreon-widget-single-metric-22.10.0","centreon-widget-servicegroup-monitoring-22.10.0","centreon-widget-service-monitoring-22.10.0","centreon-widget-ntopng-listing-22.10.0","centreon-widget-live-top10-memory-usage-22.10.0","centreon-widget-live-top10-cpu-usage-22.10.0","centreon-widget-httploader-22.10.0","centreon-widget-hostgroup-monitoring-22.10.0","centreon-widget-host-monitoring-22.10.0","centreon-widget-grid-map-22.10.0","centreon-widget-graph-monitoring-22.10.0","centreon-widget-global-health-22.10.0","centreon-widget-engine-status-22.10.0","centreon-web-22.10.2","centreon-open-tickets-22.10.0","centreon-ha-22.10.0","centreon-gorgone-22.10.0","centreon-dsm-22.10.0","centreon-awie-22.10.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-33853.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}]}