Unrated severityOSV Advisory· Published Jan 5, 2026· Updated Jan 8, 2026
Information disclosure on Administration parameters API endpoint
CVE-2025-12519
Description
Missing Authorization vulnerability in Centreon Infra Monitoring (Administration parameters API endpoint modules) allows Accessing Functionality Not Properly Constrained by ACLs, resulting in Information Disclosure like downtime or acknowledgement configurations. This issue affects Infra Monitoring: from 25.10.0 before 25.10.2, from 24.10.0 before 24.10.15, from 24.04.0 before 24.04.19.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- thewatch.centreon.com/latest-security-bulletins-64/cve-2025-12519-centreon-web-medium-severity-5359mitrevendor-advisory
- github.com/centreon/centreon/releasesmitrerelease-notes
News mentions
0No linked articles in our index yet.