1445 matches found
CVE-2023-31210
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
CVE-2023-31210
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
Design/Logic Flaw
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
UBUNTU-CVE-2023-31210
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
CVE-2023-31210 Privilege escalation in agent via LD_LIBRARY_PATH
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
CVE-2023-31210
CVE-2023-31210 affects Checkmk 2.2.0p10 to 2.2.0p16, where a user-controlled LD_LIBRARY_PATH in the agent can be exploited by a malicious Checkmk site user to escalate privileges via injection of malicious libraries. The documents confirm the affected product (Checkmk), the vulnerable component (...
CVE-2023-31210 Privilege escalation in agent via LD_LIBRARY_PATH
Usage of user controlled LDLIBRARYPATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries...
Checkmk Security Vulnerabilities
Checkmk is an editor. A security vulnerability exists in Checkmk versions 2.2.0p10 through 2.2.0p16, which stems from the use of user-controlled LDLIBRARYPATH in an agent, allowing an attacker to escalate privileges by injecting a malicious library...
PT-2023-23233 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions 2.2.0p10 through 2.2.0p16 Description: The issue concerns the usage of user-controlled LD LIBRARY PATH in the agent of Checkmk, allowing a malicious Checkmk site user to escalate rights via the injection of malicious librarie...
CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
Code injection
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
UBUNTU-CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287 Backup password in GET parameter
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287
The CVE-2023-6287 entry concerns Tribe29 Checkmk Appliance (Webconf) prior to version 1.6.8. The vulnerability allows a local attacker to retrieve passwords by reading log files due to a sensitive data exposure in Webconf. Affected software: Tribe29 Checkmk Appliance before 1.6.8. Root cause: imp...
PT-2023-32591 · Tribe29 · Tribe29 Checkmk Appliance
Name of the Vulnerable Software and Affected Versions: Tribe29 Checkmk Appliance versions prior to 1.6.8 Description: The issue allows a local attacker to expose sensitive data by retrieving passwords via reading log files. This is possible due to a sensitive data exposure in Webconf...
tribe29 Checkmk Security Vulnerabilities
tribe29 Checkmk is an application from the German company tribe29. It provides a comprehensive solution for monitoring applications, servers and networks. A security vulnerability exists in the tribe29 Checkmk Appliance versions prior to 1.6.8. An attacker exploited the vulnerability to retrieve...
CVE-2023-6251
Cross-site Request Forgery CSRF in Checkmk 2.2.0p15, 2.1.0p37, = 2.0.0p39 allow an authenticated attacker to delete user-messages for individual users...
CVE-2023-6251
Cross-site Request Forgery CSRF in Checkmk 2.2.0p15, 2.1.0p37, = 2.0.0p39 allow an authenticated attacker to delete user-messages for individual users...