1445 matches found
CVE-2024-2380
Stored XSS in graph rendering in Checkmk 2.3.0b4...
UBUNTU-CVE-2024-2380
Stored XSS in graph rendering in Checkmk 2.3.0b4...
CVE-2024-2380 XSS in graph rendering
Stored XSS in graph rendering in Checkmk 2.3.0b4...
CVE-2024-2380 XSS in graph rendering
Stored XSS in graph rendering in Checkmk 2.3.0b4...
Checkmk 安全漏洞
Checkmk is an editor. A security vulnerability exists in Checkmk versions prior to 2.3.0b4. An attacker exploited the vulnerability to perform a cross-site scripting attack...
PT-2024-20091 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.3.0b4 Description: The issue is related to stored XSS in graph rendering. Recommendations: For versions prior to 2.3.0b4, update to version 2.3.0b4 or later to resolve the issue...
CVE-2024-28824
Least privilege violation and reliance on untrusted inputs in the mkinformix Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-0638
Least privilege violation in the Checkmk agent plugins mkoracle, mkoracle.ps1, and mkoraclecrs before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-0638
Least privilege violation in the Checkmk agent plugins mkoracle, mkoracle.ps1, and mkoraclecrs before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-28824
Least privilege violation and reliance on untrusted inputs in the mkinformix Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
UBUNTU-CVE-2024-1742
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
UBUNTU-CVE-2024-0638
Least privilege violation in the Checkmk agent plugins mkoracle, mkoracle.ps1, and mkoraclecrs before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
UBUNTU-CVE-2024-28824
Least privilege violation and reliance on untrusted inputs in the mkinformix Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-28824 Privilege escalation in mk_informix plugin
Least privilege violation and reliance on untrusted inputs in the mkinformix Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-28824
CVE-2024-28824 affects the mk_informix Checkmk agent plugin. The flaw is a least-privilege violation and reliance on untrusted inputs that allows local privilege escalation. Affected versions are before Checkmk 2.3.0b4 (beta), 2.2.0p24, 2.1.0p41, and 2.0.0 (EOL). Mitigation is to upgrade to the c...
CVE-2024-28824 Privilege escalation in mk_informix plugin
Least privilege violation and reliance on untrusted inputs in the mkinformix Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows local users to escalate privileges...
CVE-2024-1742 Information disclosure in mk_oracle Checkmk agent plugin
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...
CVE-2024-1742 Information disclosure in mk_oracle Checkmk agent plugin
Invocation of the sqlplus command with sensitive information in the command line in the mkoracle Checkmk agent plugin before Checkmk 2.3.0b4 beta, 2.2.0p24, 2.1.0p41 and 2.0.0 EOL allows the extraction of this information from the process list...