Your submission was sent successfully! Close

CVE-2020-24368

Published: 19 August 2020

Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability which allows an attacker to access arbitrary files that are readable by the process running Icinga Web 2. This issue is fixed in Icinga Web 2 in v2.6.4, v2.7.4 and v2.8.2.

Notes

AuthorNote
ebarretto
only affects > 2.0.0
Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
icinga
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
focal Does not exist

precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(code not present)