Home / Vulnerability Intelligence / CVE-2026-2751

CVE-2026-2751 - Vulnerability Analysis

HighCVSS: 8.3

Last Updated: March 2, 2026

Centreon Centreon Web - SQL Injection

Published: February 27, 2026Updated: March 2, 2026Remote Exploitable

Overview

Centreon Centreon Web on Central Server < 25.10.8, 24.10.20, 24.04.24 contains a blind SQL injection caused by unsanitized array keys in Service Dependencies deletion, letting remote attackers execute blind SQL queries, exploit requires crafted request.

Severity & Score

Severity: High

CVSS Score: 8.3

EPSS Score: 1.5%(Probability of exploitation in next 30 days)

Impact

Remote attackers can execute blind SQL queries, potentially leading to data leakage or database compromise.

Mitigation

Update to version 25.10.8, 24.10.20, 24.04.24 or later.

References

https://https://thewatch.centreon.com/latest-security-bulletins-64/cve-2026-2751-centreon-web-high-severity-5504

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Feb 28, 2026

🟠 CVE-2026-2751 - High (8.3) Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injection.This issue affects Centreon Web on Central... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2751/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

GitHub Repositories(1 repo)

https://github.com/hakaioffsec/Centreon-Exploits-2026

Related Resources

Details

CVE ID: CVE-2026-2751
Severity: High
CVSS Score: 8.3
Type: sql_injection
Status: unconfirmed
EPSS: 1.5%
Social Posts: 1

CWE

CWE-89

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

EPSS Score

1.5%Probability of exploitation in the next 30 days