Icinga Web 2 Security Vulnerabilities and Issues — Icinga Web 2 CVE List

Lucene search

IcingaIcinga Web 2

3 matches found

CVE•added 2018/12/17 3:29 p.m.•114 views

CVE-2018-18247

Icinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add icon parameter.

5.4CVSS6AI score0.00206EPSS

CVE•added 2022/03/08 8:15 p.m.•104 views

CVE-2022-24714

Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Installations of Icinga 2 with the IDO writer enabled are affected. If you use service custom variables in role restrictions, and you regularly decommission service objects, users with said roles may stil...

5.3CVSS5.4AI score0.00221EPSS

CVE•added 2025/03/26 5:15 p.m.•49 views

CVE-2025-27609

Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. A vulnerability in versions prior to 2.11.5 and 2.12.13 allows an attacker to craft a request that, once transmitted to a victim's Icinga Web, allows to embed arbitrary Javascript into it and to act on be...

5.4CVSS7.1AI score0.00063EPSS