Vulnerability CVE-2020-24368

Vulnerability CVE-2020-24368

Published: 2020-08-19

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Icinga -> Icinga web2
Debian -> Debian linux

https://github.com/Icinga/icingaweb2/blob/master/CHANGELOG.md

https://github.com/Icinga/icingaweb2/issues/4226

https://icinga.com/2020/08/19/icinga-web-security-release-v2-6-4-v2-7-4-and-v2-8-2/

https://lists.debian.org/debian-lts-announce/2020/08/msg00040.html

https://www.debian.org/security/2020/dsa-4747