Unrated severityNVD Advisory· Published Jan 15, 2014· Updated Jun 17, 2026
CVE-2013-7107
CVE-2013-7107
Description
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in Icinga 1.8.5, 1.9.4, 1.10.2, and earlier allows remote attackers to hijack the authentication of users for unspecified commands via unspecified vectors, as demonstrated by bypassing authentication requirements for CVE-2013-7106.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
40cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*+ 38 more
- cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*range: <=1.10.2
- cpe:2.3:a:icinga:icinga:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:0.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:0.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.10.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:icinga:icinga:1.9.4:*:*:*:*:*:*:*
- (no CPE)range: <=1.10.2
Patches
Vulnerability mechanics
References
5- dev.icinga.org/issues/5250nvdVendor Advisory
- dev.icinga.org/issues/5346nvdVendor Advisory
- www.icinga.org/2013/12/17/icinga-security-releases-1-10-2-1-9-4-1-8-5/nvdVendor Advisory
- lists.opensuse.org/opensuse-updates/2014-02/msg00061.htmlnvd
- www.openwall.com/lists/oss-security/2013/12/16/4nvd
News mentions
0No linked articles in our index yet.