CVE-2024-24819: 
Linux Alpine vulnerability analysis and mitigation

CVE-2024-24819 affects the icingaweb2-module-incubator, a working project of bleeding edge Icinga Web 2 libraries. The vulnerability exists in the gipfl\Web\Form class implementation, which fails to properly validate CSRF tokens despite having CSRF protection enabled by default. This vulnerability was discovered and disclosed on February 8, 2024, affecting all versions prior to 0.22.0 (GitHub Advisory).

The vulnerability stems from a flaw in the CSRF protection mechanism where the class gipfl\Web\Form automatically adds a CSRF token element to forms but fails to validate the token when the form is submitted. The severity is rated as HIGH with a CVSS v3.1 base score of 8.8 (NIST: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), though GitHub's assessment rates it as MEDIUM with a score of 5.3 (CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:H/A:L). The vulnerability is classified as CWE-352 (Cross-Site Request Forgery) (NVD).

The vulnerability allows attackers to perform unauthorized actions on behalf of authenticated users who interact with specially crafted links or websites. This could lead to unauthorized changes being made through the application while bypassing the intended CSRF protection mechanisms (GitHub Advisory).

The vulnerability has been patched in version 0.22.0 of icingaweb2-module-incubator. Users are advised to upgrade to this version as there are no known workarounds for this vulnerability (GitHub Advisory).