PT-2022-6524 · Icinga · Icinga Web 2

Thomas-Chauchefoin-Sonarsource

Published

2022-02-10

Updated

2023-04-10

CVE-2022-24716

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Icinga Web 2 versions prior to 2.9.6 and 2.10

Description The issue allows unauthenticated users to leak the contents of files on the local system accessible to the web-server user, including icingaweb2 configuration files with database credentials. This is due to insufficient path name restrictions in the PHP framework. An attacker can exploit this to execute arbitrary code remotely.

Recommendations For versions prior to 2.9.6, update to version 2.9.6 or later. For versions prior to 2.10, update to version 2.10 or later. As a general measure, rotate database credentials to minimize potential damage from leaked credentials.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

BDU:2023-01982

CVE-2022-24716

GHSA-5P3F-RH28-8FRW

Affected Products

Icinga Web 2

PT-2022-6524 · Icinga · Icinga Web 2

CVE-2022-24716

Weakness Enumeration

Related Identifiers

Affected Products

References · 21