All 9 CVE vulnerabilities found in icingaweb2, with AI-generated Chinese analysis, references, and POCs.
Vendor: Icinga
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30164 | Icinga Web 2 has open redirect on login page CWE-601 | 4.1 | Medium | 2025-03-26 |
| CVE-2025-27609 | Icinga Web 2 Vulnerable to Reflected XSS CWE-79 | 6.1AI | MediumAI | 2025-03-26 |
| CVE-2025-27405 | Icinga Web 2 has XSS in embedded content CWE-79 | 7.7 | High | 2025-03-26 |
| CVE-2025-27404 | Icinga Web 2 DOM-based XSS vulnerability CWE-79 | 7.7 | High | 2025-03-26 |
| CVE-2022-24714 | Disclosure of hosts and related data, linked to decommissioned services in Icinga Web 2 CWE-863 | 5.3 | Medium | 2022-03-08 |
| CVE-2022-24715 | Arbitrary code execution for authenticated users in Icinga Web 2 CWE-22 | 8.5 | High | 2022-03-08 |
| CVE-2022-24716 | Path traversal in Icinga Web 2 CWE-22 | 7.5 | High | 2022-03-08 |
| CVE-2021-32747 | Custom variable protection and blacklists can be circumvented CWE-200 | 5.3 | Medium | 2021-07-12 |
| CVE-2021-32746 | Possible path traversal by use of the `doc` module CWE-22 | 5.3 | Medium | 2021-07-12 |
All 9 known CVE vulnerabilities affecting icingaweb2 with full Chinese analysis, references, and POCs where available.