Blog Entries

07. 07. 2026 Patrick Harasser Bug Fixes, NetEye

NetEye 4 – Security Advisory (Icinga 2)

Important: Icinga 2 security update Type/Severity NetEye Product Security has rated this update as having a critical security impact. Topic An update for the icinga package is now available for NetEye 4. Security Fix for NetEye 4.48 Summary The vulnerabilities include an authentication bypass leading to privilege escalation via trusted CA impersonation, a stack-based buffer overflow, and an…

Read More
07. 07. 2026 Gabriele Bocchi Bug Fixes, NetEye

NetEye 4 – Security Advisory (Elastic Stack)

Important: Elastic Stack security update Type/Severity NetEye Product Security has rated this update as having a Medium security impact. Topic An update for the Kibana package is now available for NetEye 4. Security Fix for NetEye 4.48 CVEs All of the 3 CVEs are Denial of Service vulnerabilities that affect Kibana, within the Elastic Stack. Affected Products All…

Read More
01. 07. 2026 Gabriele Bocchi Bug Fixes, NetEye

Bug Fixes for NetEye 4.48

Fix Geo Map layers and maps deletion. We have resolved an issue in the Geo Map module that prevented users from deleting maps and layers through the web interface. List of updated packages To solve the issue mentioned above, the following packages have been updated for NetEye 4.48:

Read More
24. 06. 2026 Gabriele Bocchi Bug Fixes, NetEye

NetEye 4 – Security Advisory (GLPI)

Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary The vulnerabilities include two SQL injections, an Arbitrary file deletion, a Privilege Escalation via authtype API manipulation, an Unauthorized debug mode…

Read More
24. 06. 2026 Gabriele Bocchi Bug Fixes, NetEye

Bug Fixes for NetEye 4.48

Fix SLM Reports generation with Object Filter on service custom variables. We have resolved an issue that caused SLM Reports generation to fail when the report was based on a contract whose Object Filter contained expressions on service custom variables (e.g., service.vars.service_system_service~true). The error prevented users from generating or viewing SLM reports for contracts using…

Read More
23. 06. 2026 Damiano Chini Bug Fixes, NetEye

NetEye 4 – Security Advisory (Grafana)

Important: Grafana security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the grafana packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary A Grafana Editor can overwrite a dashboard not owned by them to acquire admin permission on that specific dashboard. The user…

Read More
12. 06. 2026 Davide Zeni Bug Fixes, NetEye

Bug Fixes for NetEye 4.47

Fix: monitoring links from the Event Overview When opening a link from the Event Overview page, the monitoring URL was supposed to be translated into the corresponding IcingaDB link. The translation was only handled on a simple click, though, so opening the link in a new tab or window (middle-click, Ctrl/Cmd+click, context menu) left the…

Read More
04. 06. 2026 Gabriele Bocchi Bug Fixes, NetEye

NetEye 4 – Security Advisory (Keycloak)

Important: Keycloak security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the keycloak packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary This vulnerability allows an attacker with a valid signed SAML assertion to inject a malicious encrypted assertion into an unsigned SAML…

Read More
03. 06. 2026 Luigi Miazzo Bug Fixes, NetEye

Bug Fixes for NetEye 4.48

Fix HEAD HTTP method not supported We resolved a compatibility issue affecting HEAD requests to NetEye endpoints. These requests could previously time out because the method was not fully supported by the underlying architecture. As a result, some procedures could fail, including the creation of connectors from the Kibana UI. List of updated packages To…

Read More
27. 05. 2026 Gabriele Bocchi Bug Fixes, NetEye

Bug Fixes for NetEye 4.47

Fix IcingaDB password file sync on all cluster nodes. We have resolved an issue that caused an IcingaDB password file to be present only on one node in a cluster installation. This could lead to failures during NetEye updates and upgrades. List of updated packages To solve the issue mentioned above, the following packages have…

Read More
30. 04. 2026 Luca Tecchio Bug Fixes, NetEye

NetEye 4 – Security Advisory (GLPI)

Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.47 Summary The vulnerabilities include two Stored XSS, an Arbitrary file deletion, an Arbitrary item deletion, Arbitrary files access and two unauthorized actions….

Read More
13. 04. 2026 Davide Sbetti Bug Fixes, NetEye

NetEye 4 – Security Advisory (Elastic Stack)

Important: Elastic Stack security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the elastic stack packages are now available for NetEye 4, with a special focus on Kibana and Logstash. Security Fix for NetEye 4.47 Summary There are several patched vulnerabilities: For details on how to apply…

Read More
03. 04. 2026 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.42, 4.43, 4.44, 4.45, 4.46 and 4.47

Fix MariaDB restarts after mariadb-server-galera version 10.11.15 We have resolved an issue that caused MariaDB to fail during restart operations after Red Hat repositories published mariadb-server-galera version 10.11.15. The issue could occur in the following cases: List of updated packages To solve the issues mentioned above, the following packages have been updated:

Read More
01. 04. 2026 Gianluca Piccolo Bug Fixes, NetEye

NetEye 4 – Security Advisory (Grafana)

Important: Grafana security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the grafana packages is now available for NetEye 4. Security Fix for NetEye 4.46 Summary There are several patched vulnerabilities. For details on how to apply this update, which includes the changes described in this advisory,…

Read More
05. 03. 2026 Gianluca Piccolo Bug Fixes, NetEye

NetEye 4 – Security Advisory (GLPI)

Important: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.46 Summary The vulnerability is about a Stored XSS and an Authenticated SQL Injection. For details on how to apply this update, which…

Read More

Archive