Lucene search
HistorySep 02, 2014 - 2:55 p.m.
CVE-2014-5340
cve-2014-5340
security vulnerability
check_mk
python
remote code execution
nvd
7.2 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.055 Low
EPSS
Percentile
93.1%
The wato component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to an automation URL.
Related
ubuntucve
ubuntucve
CVE-2014-5340
2014-09-02 00:00:00
prion
prion
Design/Logic Flaw
2014-09-02 14:55:00
fedora
fedora
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-2.fc21
2014-10-05 08:14:05
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-1.fc21
2014-09-27 10:06:43
[SECURITY] Fedora 20 Update: check-mk-1.2.4p5-2.fc20
2014-10-10 16:05:37
nessus
nessus
Fedora 21 : check-mk-1.2.4p5-2.fc21 (2014-11896)
2014-10-06 00:00:00
Check_MK 1.2.4 < 1.2.4p4 / 1.2.5 < 1.2.5i4 Multiple Vulnerabilities
2017-06-28 00:00:00
Fedora 21 : check-mk-1.2.4p5-1.fc21 (2014-11160)
2014-09-29 00:00:00
securityvulns
securityvulns
redhat
redhat
(RHSA-2015:1495) Important: Red Hat Gluster Storage 3.1 update
2015-07-29 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:41:25
Improper Access Control
2019-05-02 05:41:24
openvas
openvas
Fedora Update for check-mk FEDORA-2014-11895
2014-10-11 00:00:00
Fedora Update for check-mk FEDORA-2014-11929
2014-10-11 00:00:00
Fedora Update for check-mk FEDORA-2014-10972
2014-10-01 00:00:00
7.2 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.055 Low
EPSS
Percentile
93.1%
Related for CVE-2014-5340