Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm
Packet Stormadded 2026/02/25 12:0 a.m.84 views

📄 Icinga for Windows 1.13.3 Private Key Disclosure

This Metasploit module identifies and exploits insecure default ACL permissions in vulnerable versions of the Icinga for Windows PowerShell Framework. The certificate directory is created with overly permissive read access for the BUILTIN\Users group, allowing any local user to access the...

6.8CVSS5.5AI score0.00004EPSS
Exploits2
Packet Storm
Packet Stormadded 2026/02/23 12:0 a.m.92 views

📄 Icinga for Windows 1.13.3 Private Key Exposure

Icinga for Windows PowerShell Framework versions prior to 1.13.4, 1.12.4, and 1.11.2 install the certificate directory with insecure default permissions. The directory C:\Program Files\WindowsPowerShell\Modules\icinga-powershell-framework\certificate is created with BUILTIN\Users:RX permissions,...

6.8CVSS5.5AI score0.00004EPSS
Exploits2
NVD
NVDadded 2026/01/29 6:16 p.m.4 views

CVE-2026-24414

The Icinga PowerShell Framework provides configuration and check possibilities to ensure integration and monitoring of Windows environments. In versions prior to 1.13.4, 1.12.4, and 1.11.2, permissions of the Icinga for Windows certificate directory grant every user read access, which results in...

6.8CVSS0.00004EPSS
Exploits2References3
Cvelist
Cvelistadded 2026/01/29 5:35 p.m.31 views

CVE-2026-24414 Icinga for Windows certificate can have too-open permissions

The Icinga PowerShell Framework provides configuration and check possibilities to ensure integration and monitoring of Windows environments. In versions prior to 1.13.4, 1.12.4, and 1.11.2, permissions of the Icinga for Windows certificate directory grant every user read access, which results in...

6.8CVSS0.00004EPSS
Exploits2References3
OSV
OSVadded 2026/01/29 5:35 p.m.4 views

CVE-2026-24414 Icinga for Windows certificate can have too-open permissions

The Icinga PowerShell Framework provides configuration and check possibilities to ensure integration and monitoring of Windows environments. In versions prior to 1.13.4, 1.12.4, and 1.11.2, permissions of the Icinga for Windows certificate directory grant every user read access, which results in...

6.8CVSS5.9AI score0.00004EPSS
Exploits2References5
CVE
CVEadded 2026/01/29 5:35 p.m.16 views

CVE-2026-24414

The CVE-2026-24414 entry concerns the Icinga PowerShell Framework: prior to versions 1.13.4, 1.12.4, and 1.11.2, the certificate directory permissions grant read access to all users, exposing the host’s Icinga private key. A fix exists in those specific patch versions, and upgrading Icinga for Wi...

6.8CVSS5.9AI score0.00004EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder