Description Preview
The Icinga Reporting module, a central component for reporting functionality in the Icinga Web 2 monitoring frontend and framework, has a vulnerability that allows an attacker to set up a template that can embed arbitrary Javascript. This can enable the attacker to act on behalf of the user if the template is previewed, and act on behalf of the headless browser if a report using the template is printed to PDF. This vulnerability is present in versions 0.10.0 through 1.0.2 and has been resolved in version 1.0.3 of Icinga Reporting.
Overview
The vulnerability (CVE-2025-27406) in the Icinga Reporting module for Icinga Web 2 allows for stored Cross-Site Scripting (XSS) which can lead to Server-Side Request Forgery (SSRF). This vulnerability has a high impact on confidentiality, integrity, and availability. The attack complexity is high and requires user interaction. The scope has changed and high privileges are required for exploitation.
Remediation
The issue has been resolved in version 1.0.3 of Icinga Reporting. Users are advised to update to this version to mitigate the vulnerability. As a workaround, users can review all templates and remove any suspicious settings.
References
Industry ExposureMost to leastThis section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
- Accommodation & Food ServicesAccommodation & Food Services
- Administrative, Support, Waste Management & Remediation ServicesAdministrative, Support, Waste Management & Remediation Services
- Agriculture, Forestry Fishing & HuntingAgriculture, Forestry Fishing & Hunting
- Arts, Entertainment & RecreationArts, Entertainment & Recreation
- ConstructionConstruction
- Educational ServicesEducational Services
- Finance and InsuranceFinance and Insurance
- Health Care & Social AssistanceHealth Care & Social Assistance
- InformationInformation
- Management of Companies & EnterprisesManagement of Companies & Enterprises
- ManufacturingManufacturing
- MiningMining
- Other Services (except Public Administration)Other Services (except Public Administration)
- Professional, Scientific, & Technical ServicesProfessional, Scientific, & Technical Services
- Public AdministrationPublic Administration
- Real Estate Rental & LeasingReal Estate Rental & Leasing
- Retail TradeRetail Trade
- Transportation & WarehousingTransportation & Warehousing
- UtilitiesUtilities
- Wholesale TradeWholesale Trade
