EPSS
Percentile
74.2%
Icinga Web 2 is vulnerable to remote code execution. The vulnerability exists due to the lack of validation of access to the configuration which can create SSH resource files in unintended directories.
github.com/Icinga/icingaweb2/commit/a06d915467ca943a4b406eb9587764b8ec34cafb
github.com/Icinga/icingaweb2/security/advisories/GHSA-v9mv-h52f-7g63
security-tracker.debian.org/tracker/CVE-2022-24715
security.gentoo.org/glsa/202208-05