There is a critical Icinga 2 security release
Versions: 2.14.3, 2.13.10, 2.12.11, 2.11.12 (CVE-2024-49369).
This is fixing a critical vulnerability allowing that allowed to bypass the certificate validation for JSON-RPC and HTTP API connections.
Given the severity of the issue, users are advised to upgrade immediately.
Find all details in the blogpost.