Sensitive host secret disclosed in cmk-update-agent.log file in Tribe29's Checkmk <= 2.1.0p13, Checkmk <= 2.0.0p29, and all versions of Checkmk 1.6.0 (EOL) allows an malicious user to gain access to the host secret through the unprotected agent updater log file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tribe29 checkmk 2.1.0 |
||
tribe29 checkmk 2.0.0 |
||
tribe29 checkmk 1.6.0 |