Unrated severityOSV Advisory· Published Jan 5, 2026· Updated Jan 8, 2026
Unauthenticated configuration import allows administrative account creation using AWIE component
CVE-2025-15026
Description
Missing Authentication for Critical Function vulnerability in Centreon Infra Monitoring centreon-awie (Awie import module) allows Accessing Functionality Not Properly Constrained by ACLs.
This issue affects Infra Monitoring: from 25.10.0 before 25.10.2, from 24.10.0 before 24.10.3, from 24.04.0 before 24.04.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- thewatch.centreon.com/latest-security-bulletins-64/cve-2025-15026-centreon-awie-critical-severity-5357mitrevendor-advisory
- github.com/centreon/centreon/releasesmitrerelease-notes
News mentions
0No linked articles in our index yet.