EUVD-2020-17100

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Icinga Web2 2.0.0 to 2.6.4 has a Directory Traversal vulnerability; fixed in later versions.

Reporter	Title	Published	Views	Family All 30
AlpineLinux	CVE-2020-24368	19 Aug 202014:25	–	alpinelinux
CVE	CVE-2020-24368	19 Aug 202014:25	–	cve
Cvelist	CVE-2020-24368	19 Aug 202014:25	–	cvelist
Debian	[SECURITY] [DLA 2343-1] icingaweb2 security update	24 Aug 202019:44	–	debian
Debian	[SECURITY] [DSA 4747-1] icingaweb2 security update	23 Aug 202020:47	–	debian
Debian CVE	CVE-2020-24368	19 Aug 202014:25	–	debiancve
Tenable Nessus	Debian DLA-2343-1 : icingaweb2 security update	25 Aug 202000:00	–	nessus
Tenable Nessus	Debian DSA-4747-1 : icingaweb2 - security update	25 Aug 202000:00	–	nessus
Tenable Nessus	FreeBSD : Icinga Web 2 -- directory traversal vulnerability (f60561e7-e23e-11ea-be64-507b9d01076a)	20 Aug 202000:00	–	nessus
Tenable Nessus	GLSA-202208-05 : Icinga Web 2: Multiple Vulnerabilities	4 Aug 202200:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "d8d9bb2f-85cb-3441-ac60-5df5e1498e6d",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "c4ea988f-2f28-357c-9ece-8f473b751dbf",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
suse	www.suse.com/security/cve/CVE-2020-24368.html
debian	www.debian.org/security/2020/dsa-4747
github	www.github.com/Icinga/icingaweb2/blob/master/CHANGELOG.md
github	www.github.com/Icinga/icingaweb2/issues/4226
icinga	www.icinga.com/2020/08/19/icinga-web-security-release-v2-6-4-v2-7-4-and-v2-8-2/
lists	www.lists.debian.org/debian-lts-announce/2020/08/msg00040.html
lists	www.lists.opensuse.org/opensuse-security-announce/2020-10/msg00026.html
security	www.security.gentoo.org/glsa/202208-05
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

CVSS 24.3

EPSS0.01746