04. 06. 2026 Gabriele Bocchi Bug Fixes, NetEye

NetEye 4 – Security Advisory (Keycloak)

Important: Keycloak security update

Type/Severity

NetEye Product Security has rated this update as having a high security impact.

Topic

An update for the keycloak packages is now available for NetEye 4.

Security Fix for NetEye 4.48

  • 26.6.2_neteye1.40.0-1

Summary

This vulnerability allows an attacker with a valid signed SAML assertion to inject a malicious encrypted assertion into an unsigned SAML response, resulting in user impersonation and unauthorized access.

For details on how to apply this update, which includes the changes described in this advisory, refer to the NetEye Update Section in the User Guide.

Affected Products

All NetEye 4.x versions >= 4.38.

References

Gabriele Bocchi

Gabriele Bocchi

Software Engineer - IT System & Service Management Solutions at Würth IT Italy

Author

Gabriele Bocchi

Software Engineer - IT System & Service Management Solutions at Würth IT Italy

Latest posts by Gabriele Bocchi

27. 05. 2026 Bug Fixes, NetEye
Bug Fixes for NetEye 4.47
27. 03. 2026 Automation, Development, DevOps, NetEye
From Private to Public: Building a Secure GitHub Organization
16. 01. 2026 Bug Fixes, NetEye
NetEye 4 – Security Advisory (Elastic Stack)
18. 12. 2025 Automation, Development, NetEye
From Patch to Package: How a Small Fix Becomes a Trusted RPM
30. 09. 2025 Automation, Development, DevOps
How to Set Up Safe, Automatic Dependency Updates in Your Projects
See All

Related Content

Tags: , , ,

03. 06. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.48

Fix HEAD HTTP method not supported We resolved a compatibility issue affecting HEAD requests to NetEye endpoints. These requests could previously time out because the method was not fully supported by the underlying architecture. As a result, some procedures could Read More
27. 05. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.47

Fix IcingaDB password file sync on all cluster nodes. We have resolved an issue that caused an IcingaDB password file to be present only on one node in a cluster installation. This could lead to failures during NetEye updates and Read More
30. 04. 2026 Bug Fixes, NetEye

NetEye 4 – Security Advisory (GLPI)

Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.47 10.0.25_neteye1.18.0-1 Summary The vulnerabilities include two Stored Read More
24. 04. 2026 Bug Fixes, Front-end, NetEye

Bug Fixes for NetEye 4.47

Node export in the Tornado Processing Tree was broken on Firefox The bug was caused by a divergence between Firefox and Chrome in blob handling with CSP. Issue resolved, behavior is now consistent across both browsers. List of updated packages Read More
16. 04. 2026 Bug Fixes, Front-end, NetEye

Bug Fixes for NetEye 4.47

Processing Tree Rendering Issue We shipped a fix for a rendering bug in the Tornado UI Processing Tree. Under specific conditions, navigating back to the dashboard after expanding tree nodes caused the tree to render incorrectly nodes would appear collapsed, Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive