vulnerability

SUSE: CVE-2020-24368: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	2020-08-19	2020-10-17	2020-10-17

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

2020-08-19

Added

2020-10-17

Modified

2020-10-17

Description

Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability which allows an attacker to access arbitrary files that are readable by the process running Icinga Web 2. This issue is fixed in Icinga Web 2 in v2.6.4, v2.7.4 and v2.8.2.

Solution(s)

suse-upgrade-icingaclisuse-upgrade-icingaweb2suse-upgrade-icingaweb2-commonsuse-upgrade-icingaweb2-vendor-dompdfsuse-upgrade-icingaweb2-vendor-htmlpurifiersuse-upgrade-icingaweb2-vendor-jshrinksuse-upgrade-icingaweb2-vendor-lessphpsuse-upgrade-icingaweb2-vendor-parsedownsuse-upgrade-icingaweb2-vendor-zf1suse-upgrade-php-icinga

References

NVD-CVE-2020-24368

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today