Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk < 2.0.0p36, < 2.1.0p28, and < 2.2.0b8 (beta) allows arbitrary livestatus command execution for authorized users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tribe29 checkmk 2.0.0 |
||
tribe29 checkmk 2.1.0 |
||
tribe29 checkmk 2.2.0 |
||
tribe29 checkmk |