13. 05. 2021 Mattia Codato Bug Fixes, ITOA, NetEye

Bug Fixes for NetEye 4.17

We fixed two security vulnerabilities related to the web interface.
They were related to the cross-site request forgery attack and the clickjacking attack.
Both are used to induce users to perform actions that they do not intend to perform by hiding the NetEye web interface under some eye-catching pages or with some malicious links sent for example by email.

More information on how the vulnerabilities work can be found here:

Furthermore, we fixed a bug related to the users SSO in the ITOA module. When the users belonged to teams of different organizations, the teams were not correctly assigned.

For NetEye 4.17 we updated the following packages:

  • httpd-neteye-config and httpd-neteye-config-autosetup to version 1.9.1-1
  • icingaweb2-module-analytics and icingaweb2-module-analytics-autosetup to version 1.38.1-1
Mattia Codato

Mattia Codato

Software Developer - IT System & Service Management Solutions at Würth IT Italy

Author

Mattia Codato

Software Developer - IT System & Service Management Solutions at Würth IT Italy

Latest posts by Mattia Codato

02. 03. 2026 Bug Fixes, NetEye
Bug Fixes for NetEye 4.46
17. 12. 2025 Development, DevOps, Kubernetes
A K3s Cluster Based on Raspberry Pi’s – The Hardware Adventure
05. 12. 2025 Bug Fixes, NetEye
Bug Fixes for NetEye 4.45
05. 12. 2025 Bug Fixes, NetEye
Bug Fixes for NetEye 4.44
05. 12. 2025 Bug Fixes, NetEye
Bug Fixes for NetEye 4.43
See All

Related Content

Tags: ,

19. 03. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.46

We addressed the following issues in the Alyvix module UI: In the General tab of a node, retention policy values only showed two digits, even when the numbers were higher than 99. Tooltips for the different retention settings (Successful, Failed, Read More
13. 03. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.46

Error during GLPI inventory task execution We have fixed a bug related to the Asset Management module and in particular in the usage of the GLPI inventory plugin to gather the inventory. List of updated packages To solve the issue Read More
05. 03. 2026 Bug Fixes, NetEye

NetEye 4 – Security Advisory (GLPI)

Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.46 10.0.24_neteye1.17.5-1 Summary The vulnerability is about a Read More
04. 03. 2026 Bug Fixes, NetEye

NetEye 4 – Security Advisory (Lampo)

Important: Lampo security update Type/Severity NetEye Product Security has rated this update as having a medium security impact. Topic An update for the lampod packages is now available for NetEye 4. Security Fix for NetEye 4.46 1.1.3-1 Summary The vulnerability is about sensitive Read More
04. 03. 2026 Bug Fixes, NetEye

NetEye 4 – Security Advisory (Elastic Stack)

Important: Elastic Stack security update Type/Severity NetEye Product Security has rated this update as having a Medium security impact. Topic An update for the Kibana package is now available for NetEye 4. Security Fix for NetEye 4.46 9.2.6_neteye3.90.8-1 CVEs CVE-2026-26934CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2026-26935CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2026-26936CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2026-26937CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive