Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.1 views

SUSE CVE-2021-37698

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the server's certificate...

6.8CVSS6.8AI score0.0142EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.35 views

SUSE SLES12: icinga2 / icinga2-bin / icinga2-common / icinga2-doc / etc (SUSE-SU-2022:3725-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3725-1 advisory. - CVE-2020-14004: prepare-dirs script allows for symlink attack in the icinga user context. bsc1172171 - CVE-2020-29663: ignoring...

9.1CVSS7.2AI score0.01554EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.27 views

Debian DLA-2816-1 : icinga2 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2816 advisory. - Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. From...

8.8CVSS7.4AI score0.01803EPSS
Exploits2References10
Debian
Debian
added 2021/11/10 9:42 p.m.25 views

[SECURITY] [DLA 2816-1] icinga2 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2816-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler November 10, 2021 https://wiki.debian.org/LTS -...

8.8CVSS9.1AI score0.01803EPSS
Exploits2
NVD
NVD
added 2021/08/19 4:15 p.m.19 views

CVE-2021-37698

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the server's certificate...

7.5CVSS0.0142EPSS
Exploits0References6
CVE
CVE
added 2021/08/19 1:55 p.m.110 views

CVE-2021-37698

CVE-2021-37698 affects Icinga 2 (versions 2.5.0–2.13.0) where ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer fail to verify the server’s certificate even when a CA is configured. This TLS validation flaw can enable credential exposure or impersonation when connecting to TSDBs...

7.5CVSS7.5AI score0.0142EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2021/08/19 1:55 p.m.27 views

CVE-2021-37698 Missing TLS service certificate validation in GelfWriter, ElasticsearchWriter, InfluxdbWriter and Influxdb2Writer

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In versions 2.5.0 through 2.13.0, ElasticsearchWriter, GelfWriter, InfluxdbWriter and Influxdb2Writer do not verify the server's certificate...

7.5CVSS8AI score0.0142EPSS
Exploits0References5
Rows per page
Query Builder