CVE-2024-49369 | Icinga icinga2 up to 2.11.11/2.12.10/2.13.9/2.14.2 TLS Certificate client_cn certificate validation (GHSA-j7wq-r9mg-9wpv)

Inserito da Angelo Barbosa | Nov 12, 2024 | CVE

A vulnerability classified as problematic was found in Icinga icinga2 up to 2.11.11/2.12.10/2.13.9/2.14.2. This vulnerability affects unknown code of the component TLS Certificate Handler. The manipulation of the argument client_cn leads to improper certificate validation.

This vulnerability was named CVE-2024-49369. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49369 | Icinga icinga2 up to 2.11.11/2.12.10/2.13.9/2.14.2 TLS Certificate client_cn certificate validation (GHSA-j7wq-r9mg-9wpv)

Post correlati

CVE-2023-6640 | silabs.com PC Controller up to 5.54.0 S2 Nonce Get Command Class Packet unusual condition

CVE-2024-5815 | GitHub Enterprise Server up to 3.9.16/3.10.13/3.11.11/3.12.5/3.13.0 cross-site request forgery

CVE-2024-34486 | Faucet SDN Ryu 4.34 parser.py OFPPacketQueue infinite loop (Issue 190)

CVE-2024-40474 | SourceCodester House Rental Management System 1.0 edit-cate.php cross site scripting