CVE-2025-61909

16.10.2025, 18:15

Icinga 2 is an open source monitoring system. From 2.10.0 to before 2.15.1, 2.14.7, and 2.13.13, the safe-reload script (also used during systemctl reload icinga2) and logrotate configuration shipped with Icinga 2 read the PID of the main Icinga 2 process from a PID file writable by the daemon user, but send the signal as the root user. This can allow the Icinga user to send signals to processes it would otherwise not permitted to. A fix is included in the following Icinga 2 versions: 2.15.1, 2.14.7, and 2.13.13.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	UNKNOWN				---
GitHub_M	CNA	---				---
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 1%

Debian Releases

Debian Product

Codename

icinga2

bullseye	vulnerable
bullseye (security)	vulnerable
bookworm	vulnerable
trixie	vulnerable
forky	vulnerable
sid	2.15.1-1 fixed

Common Weakness Enumeration

CWE-250 - Execution with Unnecessary Privileges
The software performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

Vulnerability Media Exposure

[GERMAN] Icinga: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Icinga ausnutzen, um Informationen offenzulegen oder einen Denial of Service hervorzurufen.
Published: 2025-10-16T22:00:00+00:00

References

https://github.com/Icinga/icinga2/commit/51ec73cbd922a76fc0f60e1d8d33acd7caa5d587

https://github.com/Icinga/icinga2/issues/10527

https://github.com/Icinga/icinga2/security/advisories/GHSA-pg6g-g99v-mw46

https://icinga.com/blog/releasing-icinga-2-v2-15-1-2-14-7-and-2-13-13-and-icinga-db-web-v1-2-3-and-1-1-4