Checkmk 安全漏洞

Checkmk is an editor. An information disclosure vulnerability exists in the Checkmk Appliance that stems from inadequate protection of sensitive information in Webconf. An attacker could exploit the vulnerability by reading log files to retrieve passwords...

Checkmk 2.1.x < 2.1.0p27 Improper Permission Handling Vulnerability

Checkmk is prone to an improper permission handling vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PT-2023-18404 · Tribe29 · Tribe29 Checkmk Appliance

Name of the Vulnerable Software and Affected Versions: Tribe29 Checkmk Appliance versions prior to 1.6.4 Description: The issue allows authenticated site users to escalate privileges due to incorrectly set permissions. Recommendations: For versions prior to 1.6.4, update to version 1.6.4 or later...

Checkmk < 2.0.0p35, 2.1.x < 2.1.0p26 Error Handling Vulnerability

Checkmk is prone to an inappropriate error handling vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2023-1768

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

CVE-2023-1768

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

UBUNTU-CVE-2023-1768

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

CVE-2023-1768

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

Code injection

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

CVE-2023-1768 Symmetric agent data encryption fails silently

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

CVE-2023-1768 Symmetric agent data encryption fails silently

Inappropriate error handling in Tribe29 Checkmk = 2.1.0p25, = 2.0.0p34, = 2.2.0b3 beta, and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations...

CVE-2023-1768

CVE-2023-1768: In Checkmk, inappropriate error handling in Tribe29 components causes symmetric encryption of agent data to fail silently, leading to plaintext transmission in certain configurations. Affected are Checkmk versions &lt;= 2.1.0p25, &lt;= 2.0.0p34,

Checkmk 安全漏洞

Checkmk is an editor. A security vulnerability exists in Checkmk that stems from an error mishandling that causes symmetric encryption of proxy data to fail and transmit data in plaintext. The following products and versions are affected: Tribe29 Checkmk 2.1.0p25 and earlier, 2.0.0p34 and earlier...

PT-2023-17228 · Checkmk · Checkmk

Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6.0 and earlier Checkmk versions 2.0.0 through 2.0.0p34 Checkmk versions 2.1.0 through 2.1.0p25 Checkmk versions 2.2.0b3 and earlier Description: Inappropriate error handling in Checkmk causes the symmetric encryption of...

Exploit for Improper Input Validation in Checkmk

CVE-2022-46836 - Remote Code Execution This exploit abuses an...

Exploit for Improper Input Validation in Checkmk

CVE-2022-47909 - Unauthenticated Arbitrary File Deletion This...

Checkmk 2.0.x < 2.0.0p35, 2.1.x < 2.1.0p25 HTML Injection Vulnerability

Checkmk is prone to an HTML injection vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:checkmk:checkmk"; if...

CVE-2023-22288

HTML Email Injection in Tribe29 Checkmk =2.1.0p23; =2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated attacker to inject malicious HTML into Emails...

CVE-2023-22288

HTML Email Injection in Tribe29 Checkmk =2.1.0p23; =2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated attacker to inject malicious HTML into Emails...

CVE-2023-22288

HTML Email Injection in Tribe29 Checkmk =2.1.0p23; =2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated attacker to inject malicious HTML into Emails...