Описание
Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navigation item.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| icingaweb2 | fixed | 2.6.2-1 | package | |
| icingaweb2 | no-dsa | stretch | package |
Примечания
https://herolab.usd.de/wp-content/uploads/sites/4/2018/12/usd20180030.txt
EPSS
Процентиль: 47%
0.00238
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 7 лет назад
Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navigation item.
CVSS3: 7.5
nvd
около 7 лет назад
Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navigation item.
CVSS3: 7.5
github
больше 3 лет назад
Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navigation item.
EPSS
Процентиль: 47%
0.00238
Низкий