CVE-2014-5338

🗓️ 22 Aug 2014 14:00:00Reported by mitreType

Multiple XSS vulnerabilities in Check_MK before 1.2.4p4 & 1.2.5 before 1.2.5i4 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors

Reporter	Title	Published	Views	Family All 30
Tenable Nessus	Check_MK 1.2.4 < 1.2.4p4 / 1.2.5 < 1.2.5i4 Multiple Vulnerabilities	28 Jun 201700:00	–	nessus
Tenable Nessus	Fedora 20 : check-mk-1.2.4p5-1.fc20 (2014-10972)	29 Sep 201400:00	–	nessus
Tenable Nessus	Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)	29 Sep 201400:00	–	nessus
Tenable Nessus	Fedora 21 : check-mk-1.2.4p5-1.fc21 (2014-11160)	29 Sep 201400:00	–	nessus
Tenable Nessus	Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)	11 Oct 201400:00	–	nessus
Tenable Nessus	Fedora 21 : check-mk-1.2.4p5-2.fc21 (2014-11896)	6 Oct 201400:00	–	nessus
Tenable Nessus	Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)	11 Oct 201400:00	–	nessus
Cvelist	CVE-2014-5338	22 Aug 201414:00	–	cvelist
EUVD	EUVD-2014-5227	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-1.fc19	27 Sep 201409:43	–	fedora

NVD

Node

check_mk_project check_mkMatch1.2.4

check_mk_project check_mkMatch1.2.4p1

check_mk_project check_mkMatch1.2.4p2

check_mk_project check_mkMatch1.2.4p3

check_mk_project check_mkMatch1.2.5i1

check_mk_project check_mkMatch1.2.5i2

check_mk_project check_mkMatch1.2.5i3

Source	Link
rhn	www.rhn.redhat.com/errata/RHSA-2015-1495.html
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/95383
mathias-kettner	www.mathias-kettner.de/check_mk_werks.php
securityfocus	www.securityfocus.com/bid/69312
packetstormsecurity	www.packetstormsecurity.com/files/127941/Deutsche-Telekom-CERT-Advisory-DTC-A-20140820-001.html
securityfocus	www.securityfocus.com/archive/1/533180/100/0/threaded

06 May 2026 22:30Current

5.1Medium risk

Vulners AI Score5.1

CVSS 23.5

EPSS0.00288

CWE-79