CNNVD-202601-4898 Information
CNNVD ID
CNNVD-202601-4898
Related CVE
- CNNVD Published: 2026-01-29
Description (Chinese)
Icinga 2是Icinga开源的一个监控系统。 Icinga 2 2.13.14之前版本、2.14.8之前版本和2.15.2之前版本存在安全漏洞,该漏洞源于Windows文件夹权限设置不当,可能导致所有本地用户可读取私钥和同步配置。
Description (English)
Icinga 2 is an Icinga open source monitoring system. Prior to Icinga 2 2.13.14, prior to 2.14.8 and prior to 2.15.2 there is a security loophole, which stems from the inappropriate set-up of Windows folder privileges, which may lead to readable private keys and synchronized configurations for all local users.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Icinga
Published
2026-01-29
Last Modified
2026-02-24
References
https://github.com/Icinga/icinga-powershell-framework/security/advisories/GHSA-88h5-rrm6-5973 https://github.com/Icinga/icinga2/security/advisories/GHSA-vfjg-6fpv-4mmr https://icinga.com/blog/releasing-icinga-2-v2-15-2-v2-14-8-v2-13-14-and-icinga-for-windows-v1-13-4-v1-12-4-v1-11-2
Patch
https://github.com/Icinga/icinga2/releases
Share on: