Skip to main content

Open Tickets CVE-2026-2749

CRITICAL
Path Traversal (CWE-22)
2026-02-27 bd4443e6-1eef-43f3-9886-25fc9ceeaae7
9.9
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
9.9 CRITICAL
AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 21:55 vuln.today
CVE Published
Feb 27, 2026 - 16:16 nvd
CRITICAL 9.9

DescriptionCVE.org

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket modules).This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7.

AnalysisAI

Path traversal in Centreon Open Tickets module allows authenticated attackers to read or write files outside intended directories. CVSS 9.9 with scope change indicates impact beyond the vulnerable component.

Technical ContextAI

CWE-22 in Centreon Open Tickets. Authenticated users can traverse the filesystem through the ticketing module, with scope change indicating potential impact on the underlying Centreon server.

RemediationAI

Update Centreon Open Tickets module. Review filesystem permissions for Centreon service account.

Share

CVE-2026-2749 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy