PHP Type Juggling Vulnerability in Centreon Web Allows Authentication Bypass

PHP Type Juggling Vulnerability in Centreon Web Allows Authentication Bypass

CVE-2018-21020 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

In very rare cases, a PHP type juggling vulnerability in centreonAuth.class.php in Centreon Web before 2.8.27 allows attackers to bypass authentication mechanisms in place.

Learn more about our Web App Pen Testing.