Vulnerabilities > CVE-2018-6535 - Unspecified vulnerability in Icinga

047910
CVSS 8.1 - HIGH
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
high complexity
icinga
NVD
Published: 2018-02-27
Updated: 2019-10-03

Summary

An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.

Vulnerable Configurations

Part Description Count
Application
Icinga
52

References