CVE-2018-6535

CVE-2018-6535

EPSS 1.4%

An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/Icinga/icinga2/issues/4920 https://github.com/Icinga/icinga2/pull/5715