Описание
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3.
Ссылки
- PatchThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.8.0 (включая) до 2.11.7 (включая)
Одно из
cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*
cpe:2.3:a:icinga:icinga:2.12.2:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00555
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-295
Связанные уязвимости
CVSS3: 9.1
ubuntu
около 5 лет назад
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.3.
CVSS3: 9.1
debian
около 5 лет назад
Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked ...
EPSS
Процентиль: 68%
0.00555
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-295