Filter

Icinga Icingaweb2-module-incubatoricingaweb2-module-incubator base implementation for HTML forms is susceptible to CSRF

8.8
EPSS
0.06%
First published (updated )

Icinga IcingaIcinga Director configuration is susceptible to Cross-Site Request Forgery

8.3
EPSS
0.06%
First published (updated )

Icinga Icinga Web Jira Integrationicingaweb2-module-jira template and field configuration are susceptible to CSRF

8.8
First published (updated )

Icinga Icinga Web 2Disclosure of hosts and related data, linked to decommissioned services in Icinga Web 2

First published (updated )

Icinga Icinga Web 2Arbitrary code execution for authenticated users in Icinga Web 2

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Icinga Icinga Web 2Path traversal in Icinga Web 2

7.5
First published (updated )

Icinga IcingaMissing TLS service certificate validation in GelfWriter, ElasticsearchWriter, InfluxdbWriter and Influxdb2Writer

7.5
First published (updated )

Icinga IcingaPasswords used to access external services inadvertently exposed through API

8.8
First published (updated )

Icinga IcingaResults of queries for ApiListener objects include the ticket salt which allows in turn to steal (more privileged) identities

8.8
First published (updated )

Icinga IcingaCustom variable protection and blacklists can be circumvented

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Icinga IcingaPossible path traversal by use of the `doc` module

First published (updated )

Icinga IcingaIcinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal …

First published (updated )

Icinga Icinga Web 2Path Traversal

7.5
First published (updated )

Icinga IcingaAn issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the i…

7.8
First published (updated )

Icinga Icinga Web 2CSRF

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Icinga Icinga Web 2XSS

First published (updated )

Icinga Icinga Web 2Code Injection

First published (updated )

Icinga Icinga Web 2XSS

First published (updated )

Icinga Icinga Web 2Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a sin…

7.5
First published (updated )

Icinga IcingaNull Pointer Dereference

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Icinga IcingaAn issue was discovered in Icinga 2.x through 2.8.1. By editing the init.conf file, Icinga 2 can be …

7.8
First published (updated )

Icinga IcingaAn issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison…

8.1
First published (updated )

Icinga IcingaAn issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated and…

7.5
First published (updated )

Icinga IcingaAn issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dr…

First published (updated )

Icinga Icingaetc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-wr…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Icinga IcingaIcinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options …

7.8
First published (updated )

Icinga IcingaXSS

First published (updated )

Icinga IcingaBuffer Overflow

First published (updated )

Icinga IcingaBuffer Overflow

First published (updated )

Nagios NagiosInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203