Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.3 views

FreeBSD : Hidden/Protected custom variables are prone to filter enumeration (4553e4b3-addf-11f0-9b8d-40a6b7c3b3b8)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4553e4b3-addf-11f0-9b8d-40a6b7c3b3b8 advisory. Icinga reports: An authorized user with access to Icinga DB Web, can use a custom variable in a filter...

6.5CVSS5.6AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2025/10/16 5:15 p.m.7 views

DEBIAN-CVE-2025-61789

Icinga DB Web provides a graphical interface for Icinga monitoring. Before 1.1.4 and 1.2.3, an authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values...

6.5CVSS5.2AI score0.00331EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/16 5:0 p.m.3 views

EUVD-2025-34795

Icinga DB Web provides a graphical interface for Icinga monitoring. Before 1.1.4 and 1.2.3, an authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values...

5.3CVSS6.2AI score0.00331EPSS
Exploits0References2
OSV
OSV
added 2025/10/16 5:0 p.m.7 views

CVE-2025-61789 Icinga DB Web hidden/protected custom variables are prone to filter enumeration

Icinga DB Web provides a graphical interface for Icinga monitoring. Before 1.1.4 and 1.2.3, an authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values...

5.3CVSS6.9AI score0.00331EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2025/10/16 12:0 a.m.7 views

Hidden/Protected custom variables are prone to filter enumeration

Icinga reports: An authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values assigned to it...

6.5CVSS6.9AI score0.00331EPSS
Exploits0References1
Rows per page
Query Builder