For a detailed overview of the security issue(s), including the impact, CVSS score, acknowledgments, and other relevant information, please refer to the links provided in the References section below.
For those customers that cannot update, a workaround is available here
For details on how to apply this update, which includes the changes described in this advisory, refer to the NetEye Update Section in the User Guide.
Affected Products
All NetEye 4.x versions >= 4.38 with an Elasticsearch enterprise license
Fix Elasticsearch read-only indices check We fixed an issue related to the 01002_elastic_indices_read_only_check.sh light health check, which checks if some indices are present in Elasticsearch in a read-only state. The check may have wrongly recognized as in read-only also some Read More
Important: Icingaweb2 Module Neteye security update Type/Severity NetEye Product Security has rated this update as having a security impact of Low Topic An update for the package icingaweb2-module-neteye is now available for NetEye 4. Security Fix for NetEye 4.41 1.164.2-1 For Read More
Important: Icingaweb2 Module Reporting security update Type/Severity NetEye Product Security has rated this update as having a security impact of High Topic An update for the package icingaweb2-module-reporting is now available for NetEye 4. Security Fix for NetEye 4.41 1.0.3_neteye0.16.1-1 For Read More
Important: Icingaweb2 Module Director security update Type/Severity NetEye Product Security has rated this update as having a security impact of Medium Topic An update for the package icingaweb2-module-director is now available for NetEye 4. Security Fix for NetEye 4.41 1.11.4_neteye1.39.2-1 For Read More
Fix Icingaweb2 GLPI monitoring integration issue We discovered and fixed a bug in the GLPI monitoring integration for Icingaweb2 where API calls to retrieve asset information fail if the hostname contains spaces. Instead of displaying asset information, a string containing Read More
