CVE-2026-2749

Published: Feb 27, 2026Modified: Mar 23, 2026

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket modules).This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7.

Affected (3)

Products: Centreon: Open Tickets

Centreon

1 product

Open Tickets

Configuration A

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Centreon Open Tickets	Before 24.04.7
Centreon Open Tickets	From 24.10.0 to 24.10.8
Centreon Open Tickets	From 25.10.0 to 25.10.3

Running on/with	Platform Versions
Linux Linux Kernel	All versions

Related CWEs

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (1)

https://thewatch.centreon.com/latest-security-bulletins-64/cve-2026-2749-centreon-open-tickets-critical-severity-5493

Source: bd4443e6-1eef-43f3-9886-25fc9ceeaae7

Third Party Advisory

Timeline

No history available yet.