Unauthenticated Arbitrary File Deletion by abusing Livestatus Query Language Injection in Checkmk <= 2.1.0p11, Checkmk <= 2.0.0p28, and all versions of Checkmk 1.6.0 (EOL)
CVE-2022-47909 - Unauthenticated Arbitrary File Deletion This exploit abuses two CVEs in Checkmk <= 210p11, Checkmk <= 200p28, and all versions of Checkmk 160 (EOL) to achieve unauthenticated arbitrary file deletion CVE-2022-48321 - An SSRF vulnerability in the Agent_Receiver endpoint of the CheckMK software By abusing the vulnerable /register_with_hostna