Icingaweb2
This hub aggregates every CVE we track for Icingaweb2, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
4
High
0
In CISA KEV
Severity distribution
MEDIUM5HIGH4
Monthly trend
0
0
0
0
0
0
0
4
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 9 most recently published vulnerabilities affecting Icingaweb2.
- CVE-2025-30164Icinga Web 2 has open redirect on login page4.1
- CVE-2025-27609Icinga Web 2 Vulnerable to Reflected XSS5.4
- CVE-2025-27405Icinga Web 2 has XSS in embedded content7.6
- CVE-2025-27404Icinga Web 2 DOM-based XSS vulnerability7.6
- CVE-2022-24714Disclosure of hosts and related data, linked to decommissioned services in Icinga Web 25.3
- CVE-2022-24716Path traversal in Icinga Web 27.5
- CVE-2022-24715Arbitrary code execution for authenticated users in Icinga Web 28.5
- CVE-2021-32747Custom variable protection and blacklists can be circumvented5.3
- CVE-2021-32746Possible path traversal by use of the `doc` module5.3
Product normalization is registry-driven with AI assist and human review. How it works