Transmission of credentials within query parameters in Checkmk <= 2.1.0p26, <= 2.0.0p35, and <= 2.2.0b6 (beta) may cause the automation user's secret to be written to the site Apache access log.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tribe29 checkmk 2.0.0 |
||
tribe29 checkmk 2.1.0 |
||
tribe29 checkmk 2.2.0 |