NOMISEC-gmh5225/CVE-2022-24716

NOMISEC WORKING POC

Exploit for CVE-2022-24716 - Icinga Web 2 <2.9.5 - Info Disclosure

AI Analysis

This repository contains a functional Python exploit for CVE-2022-24716, an arbitrary file disclosure vulnerability in Icinga Web 2 versions <2.8.6, <2.9.6, and <2.10. The exploit constructs a path traversal URL to retrieve sensitive files from the target system.

Attack Type

info_leak

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 3

https://github.com/gmh5225/CVE-2022-24716

Stars 0

Forks 1

Last Push Mar 20, 2023

Authors

Jacob Ebben gmh5225

Vulnerability

CVE-2022-24716

Icinga Web 2 <2.9.5 - Info Disclosure

HIGH

CVSS 7.5