Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-47909

🗓️ 20 Feb 2023 16:53:37Reported by Tribe29Type 
cve
 cve🔗 web.nvd.nist.gov👁 45 Views

Livestatus Query Language (LQL) injection in Tribe29's Checkmk <= 2.1.0p11, Checkmk <= 2.0.0p28, and all versions of Checkmk 1.6.0 (EOL) allows an attacker to perform direct queries to the application's core from localhost

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Circl		CVE-2022-47909
20 Feb 202320:15
circl
CNNVD		Checkmk 安全漏洞
20 Feb 202300:00
cnnvd
Cvelist		CVE-2022-47909 LQL Injection in Livestatus HTTP headers
20 Feb 202316:53
cvelist
GithubExploit		Exploit for Improper Input Validation in Checkmk
27 Mar 202302:16
githubexploit
EUVD		EUVD-2022-50654
3 Oct 202520:07
euvd
NVD		CVE-2022-47909
20 Feb 202317:15
nvd
OpenVAS		Checkmk 2.0.x < 2.0.0p29, 2.1.x < 2.1.0p12 Improper Input Validation Vulnerability
22 Feb 202300:00
openvas
OSV		UBUNTU-CVE-2022-47909
20 Feb 202317:15
osv
Prion		Code injection
20 Feb 202317:15
prion
Positive Technologies		PT-2023-15524 · Checkmk · Checkmk
20 Feb 202300:00
ptsecurity
Rows per page
NVD
Node
checkmkcheckmkMatch2.1.0-
OR
checkmkcheckmkMatch2.1.0b1
OR
checkmkcheckmkMatch2.1.0b2
OR
checkmkcheckmkMatch2.1.0b3
OR
checkmkcheckmkMatch2.1.0b4
OR
checkmkcheckmkMatch2.1.0b5
OR
checkmkcheckmkMatch2.1.0b6
OR
checkmkcheckmkMatch2.1.0b7
OR
checkmkcheckmkMatch2.1.0b8
OR
checkmkcheckmkMatch2.1.0b9
OR
checkmkcheckmkMatch2.1.0p1
OR
checkmkcheckmkMatch2.1.0p10
OR
checkmkcheckmkMatch2.1.0p11
OR
checkmkcheckmkMatch2.1.0p2
OR
checkmkcheckmkMatch2.1.0p3
OR
checkmkcheckmkMatch2.1.0p4
OR
checkmkcheckmkMatch2.1.0p5
OR
checkmkcheckmkMatch2.1.0p6
OR
checkmkcheckmkMatch2.1.0p7
OR
checkmkcheckmkMatch2.1.0p8
OR
checkmkcheckmkMatch2.1.0p9
Node
checkmkcheckmkMatch2.0.0-
OR
checkmkcheckmkMatch2.0.0b1
OR
checkmkcheckmkMatch2.0.0b2
OR
checkmkcheckmkMatch2.0.0b3
OR
checkmkcheckmkMatch2.0.0b4
OR
checkmkcheckmkMatch2.0.0b5
OR
checkmkcheckmkMatch2.0.0b6
OR
checkmkcheckmkMatch2.0.0b7
OR
checkmkcheckmkMatch2.0.0b8
OR
checkmkcheckmkMatch2.0.0i1
OR
checkmkcheckmkMatch2.0.0p1
OR
checkmkcheckmkMatch2.0.0p10
OR
checkmkcheckmkMatch2.0.0p11
OR
checkmkcheckmkMatch2.0.0p12
OR
checkmkcheckmkMatch2.0.0p13
OR
checkmkcheckmkMatch2.0.0p14
OR
checkmkcheckmkMatch2.0.0p15
OR
checkmkcheckmkMatch2.0.0p16
OR
checkmkcheckmkMatch2.0.0p17
OR
checkmkcheckmkMatch2.0.0p18
OR
checkmkcheckmkMatch2.0.0p19
OR
checkmkcheckmkMatch2.0.0p2
OR
checkmkcheckmkMatch2.0.0p20
OR
checkmkcheckmkMatch2.0.0p21
OR
checkmkcheckmkMatch2.0.0p22
OR
checkmkcheckmkMatch2.0.0p23
OR
checkmkcheckmkMatch2.0.0p24
OR
checkmkcheckmkMatch2.0.0p25
OR
checkmkcheckmkMatch2.0.0p26
OR
checkmkcheckmkMatch2.0.0p27
OR
checkmkcheckmkMatch2.0.0p28
OR
checkmkcheckmkMatch2.0.0p3
OR
checkmkcheckmkMatch2.0.0p4
OR
checkmkcheckmkMatch2.0.0p5
OR
checkmkcheckmkMatch2.0.0p6
OR
checkmkcheckmkMatch2.0.0p7
OR
checkmkcheckmkMatch2.0.0p8
OR
checkmkcheckmkMatch2.0.0p9
Node
checkmkcheckmkMatch1.6.0-
OR
checkmkcheckmkMatch1.6.0b1
OR
checkmkcheckmkMatch1.6.0b10
OR
checkmkcheckmkMatch1.6.0b11
OR
checkmkcheckmkMatch1.6.0b12
OR
checkmkcheckmkMatch1.6.0b2
OR
checkmkcheckmkMatch1.6.0b3
OR
checkmkcheckmkMatch1.6.0b4
OR
checkmkcheckmkMatch1.6.0b5
OR
checkmkcheckmkMatch1.6.0b6
OR
checkmkcheckmkMatch1.6.0b7
OR
checkmkcheckmkMatch1.6.0b8
OR
checkmkcheckmkMatch1.6.0b9
OR
checkmkcheckmkMatch1.6.0p1
OR
checkmkcheckmkMatch1.6.0p10
OR
checkmkcheckmkMatch1.6.0p11
OR
checkmkcheckmkMatch1.6.0p12
OR
checkmkcheckmkMatch1.6.0p13
OR
checkmkcheckmkMatch1.6.0p14
OR
checkmkcheckmkMatch1.6.0p15
OR
checkmkcheckmkMatch1.6.0p16
OR
checkmkcheckmkMatch1.6.0p17
OR
checkmkcheckmkMatch1.6.0p18
OR
checkmkcheckmkMatch1.6.0p19
OR
checkmkcheckmkMatch1.6.0p2
OR
checkmkcheckmkMatch1.6.0p20
OR
checkmkcheckmkMatch1.6.0p21
OR
checkmkcheckmkMatch1.6.0p22
OR
checkmkcheckmkMatch1.6.0p23
OR
checkmkcheckmkMatch1.6.0p24
OR
checkmkcheckmkMatch1.6.0p25
OR
checkmkcheckmkMatch1.6.0p26
OR
checkmkcheckmkMatch1.6.0p27
OR
checkmkcheckmkMatch1.6.0p28
OR
checkmkcheckmkMatch1.6.0p29
OR
checkmkcheckmkMatch1.6.0p3
OR
checkmkcheckmkMatch1.6.0p30
OR
checkmkcheckmkMatch1.6.0p4
OR
checkmkcheckmkMatch1.6.0p5
OR
checkmkcheckmkMatch1.6.0p6
OR
checkmkcheckmkMatch1.6.0p7
OR
checkmkcheckmkMatch1.6.0p8
OR
checkmkcheckmkMatch1.6.0p9
[
  {
    "defaultStatus": "unaffected",
    "product": "Checkmk",
    "vendor": "Tribe29",
    "versions": [
      {
        "lessThanOrEqual": "2.0.0p28",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "2.1.0p11",
        "status": "affected",
        "version": "2.1.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "1.6.0p30",
        "status": "affected",
        "version": "1.6.0",
        "versionType": "semver"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 07:32Current
7.1High risk
Vulners AI Score7.1
CVSS 3.16.8 - 7.8
EPSS0.00262
CWE-20
cve-2022-47909tribe29checkmklql injectionsecurity vulnerabilitylocalhostnvd
45