4 matches found
CVE-2021-32746
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Between versions 2.3.0 and 2.8.2, the doc module of Icinga Web 2 allows to view documentation directly in the UI. It must be enabled manually by an administrator and users need explicit access permissio...
Linux Distros Unpatched Vulnerability : CVE-2021-32746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Between versions 2.3.0 and 2.8.2, the doc module of Icinga Web 2...
CVE-2021-32746
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Between versions 2.3.0 and 2.8.2, the doc module of Icinga Web 2 allows to view documentation directly in the UI. It must be enabled manually by an administrator and users need explicit access permissio...
CVE-2021-32746
Icinga Web 2 versions 2.3.0–2.8.2 expose a vulnerability in the built‑in doc module that, via a specific route, allows reading arbitrary files accessible to the web server user. The issue is fixed in 2.9.0, 2.8.3, and 2.7.5. Workarounds include disabling the doc module or revoking access permissi...