From DHS/US-CERT's National Vulnerability Database
PRIMX ZoneCentral before 6.1.2236 on Windows sometimes leaks the plaintext of NTFS files. On non-SSD devices, this is limited to a 5-second window and file sizes less than 600 bytes. The effect on SSD devices may be greater.
Centreon 3.4.x has XSS via the resource name or macro expression of a poller macro.
Centreon 3.4.x allows SNMP trap SQL Injection.
CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source-mode paste.
Buffer overflow in DNS SRV and NAPTR lookups in Digium Asterisk 15.x before 15.6.2 and 16.x before 16.0.1 allows remote attackers to crash Asterisk via a specially crafted DNS SRV or NAPTR response, because a buffer size is supposed to match an expanded length but actually matches a compressed lengt...