Question 1

What is CVE-2008-1178?

Accepted Answer

CVE-2008-1178 is a medium-severity software vulnerability (Path traversal) with a CVSS score of 4.3. Directory traversal vulnerability in include/doc/index.php in Centreon 1.4.2.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter, a different vector than CVE-2008-1119.

Question 2

Is CVE-2008-1178 being actively exploited?

Accepted Answer

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 5%.

Question 3

What products does CVE-2008-1178 affect?

Accepted Answer

Tracked products affected include Centreon. Check the version you run to see whether it is affected.

Question 4

How do I fix CVE-2008-1178?

Accepted Answer

Apply the vendor fix in your normal patch cycle. Upgrade affected products to a fixed version.

CVE-2008-1178

Summary

Impact & exploitability

Affected products we track (1)

Recommendation

Additional information