Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/08/2015 Updated: 01/09/2015

CVSS v2 Base Score: 8.5 | Impact Score: 10 | Exploitability Score: 6.8

VMScore: 756

Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

Check_MK 1.2.2p2, 1.2.2p3, and 1.2.3i5 allows remote authenticated users to execute arbitrary Python code via a crafted rules.mk file in a snapshot. NOTE: this can be exploited by remote attackers by leveraging CVE-2014-2330.

Vulnerable Product	Search on Vulmon	Subscribe to Product
check mk project check mk

Debian Bug report logs - #742689 check-mk: CVE-2014-2329, CVE-2014-2330, CVE-2014-2331, CVE-2014-2332 Package: check-mk; Maintainer for check-mk is Debian Nagios Maintainer Group <pkg-nagios-devel@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Wed, 26 Mar 2014 12:36:06 UTC Severity: ...

CWE-94 http://www.securityfocus.com/archive/1/531594 http://www.securityfocus.com/archive/1/531656 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742689 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2331

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect