Vulnerability Description
Icinga Web 2 before 2.6.2 allows injection of PHP ini-file directives via vectors involving environment variables as the channel to send information to the attacker, such as a name=${PATH}_${APACHE_RUN_DIR}_${APACHE_RUN_USER} parameter to /icingaweb2/navigation/add or /icingaweb2/dashboard/new-dashlet.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Icinga | Icinga Web 2 | < 2.6.2 |
Related Weaknesses (CWE)
References
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00031.html
- https://herolab.usd.de/wp-content/uploads/sites/4/2018/12/usd20180030.txtExploitThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00031.html
- https://herolab.usd.de/wp-content/uploads/sites/4/2018/12/usd20180030.txtExploitThird Party Advisory
FAQ
What is CVE-2018-18249?
CVE-2018-18249 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Icinga Web 2 before 2.6.2 allows injection of PHP ini-file directives via vectors involving environment variables as the channel to send information to the attacker, such as a name=${PATH}_${APACHE_RU...
How severe is CVE-2018-18249?
CVE-2018-18249 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-18249?
Check the references section above for vendor advisories and patch information. Affected products include: Icinga Icinga Web 2.