1445 matches found
CVE-2025-58124
CVE-2025-58124 affects the Checkmk Exchange plugin check-mk-api, with the root cause being improper certificate validation. This enables a MitM attacker to intercept traffic in network communications. Public descriptions consistently reference the vulnerable component as the plugin for Checkmk Ex...
CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM position to intercept traffic...
CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM position to intercept traffic...
CVE-2025-58123
CVE-2025-58123 affects the Checkmk Exchange plugin BGP Monitoring. The root cause is improper certificate validation, enabling MitM attackers to intercept traffic when positioned on the network. Documented sources confirm the vulnerability description but do not provide explicit affected versions...
CVE-2025-58123 Lack of TLS validation in plugin BGP Monitoring on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin BGP Monitoring allows attackers in MitM position to intercept traffic...
PT-2025-35083
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Dell Powerscale affected versions not specified Description: The Checkmk Exchange plugin for Dell Powerscale contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle Mit...
PT-2025-35080
Name of the Vulnerable Software and Affected Versions: Checkmk versions affected versions not specified Description: The Checkmk Exchange plugin check-mk-api contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM position to intercept networ...
Checkmk Exchange plugin BGP Monitoring 安全漏洞
Checkmk Exchange plugin BGP Monitoring is a session visualization management and service state monitoring software from Checkmk, Germany. A security vulnerability exists in Checkmk Exchange plugin BGP Monitoring that stems from improper certificate validation and could lead to a man-in-the-middle...
Checkmk Exchange plugin check-mk-api 安全漏洞
Checkmk Exchange plugin check-mk-api is a plugin from Checkmk, Inc. A security vulnerability exists in Checkmk Exchange plugin check-mk-api, which stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
Checkmk Exchange plugin Freebox v6 agent 安全漏洞
Checkmk Exchange plugin Freebox v6 agent is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin Freebox v6 agent that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
Checkmk Exchange plugin VMware vSAN 安全漏洞
Checkmk Exchange plugin VMware vSAN is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin VMware vSAN that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
Checkmk Exchange plugin Dell Powerscale 安全漏洞
Checkmk Exchange plugin Dell Powerscale is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin Dell Powerscale that stems from improper certificate validation, which could lead to a man-in-the-middle attacker intercepting traffic...
PT-2025-35081
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Freebox v6 agent affected versions not specified Description: The Checkmk Exchange plugin Freebox v6 agent contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM...
PT-2025-35082
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin VMware vSAN affected versions not specified Description: The Checkmk Exchange plugin for VMware vSAN contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM positi...
Linux Distros Unpatched Vulnerability : CVE-2022-47909
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Livestatus Query Language LQL injection in the AuthUser HTTP query header of Tribe29's Checkmk = 2.1.0p11, Checkmk = 2.0.0p28, and all versions of Checkmk 1.6.0...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
UBUNTU-CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918 Livestatus injection in autocomplete endpoint
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...