checkmk vulnerabilities and exploits

(subscribe to this query)

Check_MK prior to 1.2.8p26 mishandles certain errors within the failed-login save feature because of a race condition, which allows remote malicious users to obtain sensitive user information by reading a GUI crash report.

Checkmk Checkmk 1.2.3 Checkmk Checkmk 1.2.4 Checkmk Checkmk 1.2.5 Checkmk Checkmk 1.2.6 Checkmk Checkmk 1.2.7 Checkmk Checkmk 1.2.8

1 EDB exploit

Reflected XSS in business intelligence in Checkmk <2.2.0p8, <2.1.0p32, <2.0.0p38, <=1.6.0p30.

Checkmk Gmbh Checkmk Checkmk Checkmk Checkmk Checkmk 2.0.0 Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0

Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk prior to 2.1.0p1, prior to 2.0.0p25 and prior to 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable

Tribe29 Checkmk Checkmk Checkmk Checkmk Checkmk 1.6.0 Checkmk Checkmk 2.0.0 Checkmk Checkmk 2.1.0

Information leakage in mknotifyd in Checkmk prior to 2.3.0p18, 2.2.0p36, 2.1.0p49 and in 2.0.0p39 (EOL) allows malicious user to get potentially sensitive data

Checkmk Checkmk Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Certain http endpoints of Checkmk in Checkmk < 2.3.0p10 < 2.2.0p31, < 2.1.0p46, <= 2.0.0p39 allows remote malicious user to bypass authentication and access data

Checkmk Checkmk Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Stored XSS in inventory tree rendering in Checkmk prior to 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 (EOL)

Checkmk Checkmk Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Stored XSS in Checkmk prior to 2.3.0p8, 2.2.0p29, 2.1.0p45, and 2.0.0 (EOL) allows users to execute arbitrary scripts by injecting HTML elements

Checkmk Checkmk Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Cross-Site request forgery in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) could lead to 1-click compromize of the site.

Checkmk Checkmk 2.0.0 Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Improper neutralization of livestatus command delimiters in mknotifyd in Checkmk <= 2.0.0p39, < 2.1.0p47, < 2.2.0p32 and < 2.3.0p11 allows arbitrary livestatus command execution.

Checkmk Checkmk 2.0.0 Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Checkmk Checkmk 2.3.0

Inappropriate error handling in Tribe29 Checkmk <= 2.1.0p25, <= 2.0.0p34, <= 2.2.0b3 (beta), and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations.

Tribe29 Checkmk Checkmk Checkmk 1.6.0 Checkmk Checkmk 2.0.0 Checkmk Checkmk 2.1.0 Checkmk Checkmk 2.2.0 Tribe29 Checkmk 1.6.0b10 Tribe29 Checkmk 1.6.0b11 Tribe29 Checkmk 1.6.0p10 Tribe29 Checkmk 1.6.0p11 Tribe29 Checkmk 1.6.0p12 Tribe29 Checkmk 1.6.0p13 Tribe29 Checkmk 1.6.0p14

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook