The CVEs include three different vulnerabilities: an Information Disclosure, a Denial of Service and a Limited Privilege Escalation.
For a detailed overview of the security issues, including the impact, CVSS score, acknowledgments, and other relevant information, please refer to the official Icinga release notes and to the links provided in the References section below.
For details on how to apply this update, which includes the changes described in this advisory, refer to the NetEye Update Section in the User Guide.
Full Stack Developer at Wuerth Phoenix. I love questioning myself, find new challenges to learn and new adventures to grow up. PHP lover trying to expand my skills studying new languages and tools to improve my professional life.
Author
Gianluca Piccolo
Full Stack Developer at Wuerth Phoenix. I love questioning myself, find new challenges to learn and new adventures to grow up. PHP lover trying to expand my skills studying new languages and tools to improve my professional life.
Fix Geo Map layers and maps deletion. We have resolved an issue in the Geo Map module that prevented users from deleting maps and layers through the web interface. List of updated packages To solve the issue mentioned above, the Read More
Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.48 10.0.26_neteye1.19.1-1 Summary The vulnerabilities include two SQL Read More
Fix SLM Reports generation with Object Filter on service custom variables. We have resolved an issue that caused SLM Reports generation to fail when the report was based on a contract whose Object Filter contained expressions on service custom variables Read More
Important: Grafana security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the grafana packages is now available for NetEye 4. Security Fix for NetEye 4.48 grafana-12.4.3_neteye3.31.1-1 Summary A Grafana Editor can overwrite Read More
Fix: monitoring links from the Event Overview When opening a link from the Event Overview page, the monitoring URL was supposed to be translated into the corresponding IcingaDB link. The translation was only handled on a simple click, though, so Read More