CVE-2018-18246

Name of the Vulnerable Software and Affected Versions Icinga Web 2 versions prior to 2.6.2

Description The issue allows for CSRF attacks, potentially enabling an attacker to disable the monitoring module or enable the setup module without proper authorization. This can be achieved through specific API endpoints, such as "/icingaweb2/config/moduledisable?name=monitoring" to disable the monitoring module, or "/icingaweb2/config/moduleenable?name=setup" to enable the setup module.

Recommendations For versions prior to 2.6.2, update to version 2.6.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/icingaweb2/config/moduledisable" and "/icingaweb2/config/moduleenable" endpoints to minimize the risk of exploitation.