Featured image of post CVE-2025-15026
Broken Access Control Critical Centron Security WebApp

CVE-2025-15026

Broken Access Control

CVE-2025-15026: Broken Access Control

CVE Publication: https://www.cve.org/CVERecord?id=CVE-2025-15026

Summary

Missing Authentication for Critical Function vulnerability in Centreon Infra Monitoring centreon-awie (Awie import module) allows Accessing Functionality Not Properly Constrained by ACLs.

Impact

Broken Access Control vulnerabilities can have severe consequences, including:

  • Unauthorized access to restricted functionality;
  • Escalation of privileges for low-level users;
  • Exposure of sensitive data and potential system compromise;
  • Loss of confidentiality and integrity of educational records;
  • Reputational damage to the organization.

Reference

https://thewatch.centreon.com/latest-security-bulletins-64/cve-2025-15026-centreon-awie-critical-severity-5357

Finder

Marcelo Queiroz

By: CVE-Hunters

© 2020 - 2026 CVE-Hunters
Built with Hugo
Theme Stack designed by Jimmy