Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN048
_____________________________________________________________________

DATE                : 16/01/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Centreon 25.10 IT & Business
                                  Editions.

=====================================================================
https://thewatch.centreon.com/latest-security-bulletins-64/cve-2025-43865-cve-2025-43864-centreon-25-10-it-business-editions-5345
_____________________________________________________________________

CVE-2025-43865, CVE-2025-43864 - Centreon 25.10 IT & Business Editions


lpinsivy
Centreonian


Publication date: January 15th, 2026

Components: centreon-anomaly-detection, centreon-autodiscovery-server,
centreon-it-edition-extensions, centreon-license-manager,
centreon-map4-web-client

Description: Upgraded react-router 7.2.0 to 7.5.2 to prevent
vulnerabilities.

Reference: CVE-2025-43865, CVE-2025-43864

CVSS: 8.2

Severity: High


Status: Only version 25.10.x of Centreon Infra Monitoring is concerned
and it is recommended to update Centreon Web on Central Server.


This version include cumulative fixes from prior updates.

If you are using an High Availability Platform, please ensure to
follow the Centreon HA Update procedures.


Reporter: N/A

 

Stay ahead of potential threats by subscribing to the Security Bulletin
section. You’ll receive instant notifications whenever a new bulletin
is published, ensuring your infrastructure remains secure and up to
date.

=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================