CVE-2018-6535

CVE-2018-6535

EPSS 1.4%

An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/Icinga/icinga2/issues/4920 https://github.com/Icinga/icinga2/pull/5715