DEBIAN-CVE-2024-41811
- Source
- https://security-tracker.debian.org/tracker/CVE-2024-41811
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2024-41811.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2024-41811
- Upstream
- Published
- 2024-08-05T21:15:38.673Z
- Modified
- 2025-11-20T10:17:20.230895Z
- Severity
-
- 3.9 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L CVSS Calculator
- Summary
- [none]
- Details
-
ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. (CSRF). All affected products, in any version, will be unaffected by this once
icinga-php-libraryis upgraded. Version 0.10.1 includes a fix for this. It will be published as part of theicinga-php-libraryv0.14.1 release. - References
Affected packages
Debian:12 / icinga-php-library
Package
- Name
- icinga-php-library
- Purl
- pkg:deb/debian/icinga-php-library?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:13 / icinga-php-library
Package
- Name
- icinga-php-library
- Purl
- pkg:deb/debian/icinga-php-library?arch=source
Debian:14 / icinga-php-library
Package
- Name
- icinga-php-library
- Purl
- pkg:deb/debian/icinga-php-library?arch=source