CVE-2026-24414

Name of the Vulnerable Software and Affected Versions Icinga PowerShell Framework versions prior to 1.13.4 Icinga PowerShell Framework versions prior to 1.12.4 Icinga PowerShell Framework versions prior to 1.11.2

Description The Icinga PowerShell Framework allows configuration and monitoring of Windows environments. Versions prior to 1.13.4, 1.12.4, and 1.11.2 have permissions set on the certificate directory that grant all users read access. This exposes the private key of the Icinga certificate for the host. The affected directory is located at C:Program FilesWindowsPowerShellmodulesicinga-powershell-frameworkcertificate. All installations are affected.

Recommendations Versions prior to 1.13.4: Upgrade to version 1.13.4 or later. Versions prior to 1.12.4: Upgrade to version 1.12.4 or later. Versions prior to 1.11.2: Upgrade to version 1.11.2 or later. As a workaround, restrict access to the C:Program FilesWindowsPowerShellmodulesicinga-powershell-frameworkcertificate directory and its subfolders, allowing only the Icinga service user and administrators access. Additionally, restrict access to the C:ProgramDataicinga2var directory and its subfolders to address a similar issue in Icinga 2.