Filter
-Infinity
0
Icingaicingaweb2-module-jira template and field configuration are susceptible to CSRF
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Icinga WebIcinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a sin…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Icinga Icinga Web 2An issue was discovered in Icinga 2.x through 2.8.1. By editing the init.conf file, Icinga 2 can be …
7.8
First published (updated )
Icinga Icinga Web 2An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison…
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Icinga Icinga Web 2An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated and…
7.5
First published (updated )
Icinga Icinga Web 2An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dr…
5.5
First published (updated )
Icinga Icinga Web 2Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal …
9.1
First published (updated )
Icinga Icinga Web 2An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the i…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Icinga Icinga Web 2Missing TLS service certificate validation in GelfWriter, ElasticsearchWriter, InfluxdbWriter and Influxdb2Writer
7.5
First published (updated )
Icinga Icinga Web 2Results of queries for ApiListener objects include the ticket salt which allows in turn to steal (more privileged) identities
8.8
First published (updated )
Icinga Icinga Web 2Custom variable protection and blacklists can be circumvented
6.5
First published (updated )
Icinga Icinga Web 2Passwords used to access external services inadvertently exposed through API
8.8
First published (updated )
Icinga Icinga Web 2Possible path traversal by use of the `doc` module
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Icinga WebArbitrary code execution for authenticated users in Icinga Web 2
First published (updated )
Icinga WebDisclosure of hosts and related data, linked to decommissioned services in Icinga Web 2
5.3
First published (updated )
Icinga Icinga Web 2Icinga Director configuration is susceptible to Cross-Site Request Forgery
8.3
EPSS
0.06%
First published (updated )
Icingaicingaweb2-module-incubator base implementation for HTML forms is susceptible to CSRF
8.8
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.