1445 matches found
Checkmk 代码问题漏洞
Checkmk is an editor. A security vulnerability exists in Tribe29 Checkmk version 2.1.0p10 and earlier, version 2.0.0p28 and earlier, which stems from failing to securely terminate expired sessions in RestAPI. An attacker could exploit the vulnerability to use an expired session token when...
Checkmk 日志信息泄露漏洞
Checkmk is an editor. A security vulnerability exists in Tribe29 Checkmk version 2.1.0p13 and earlier, version 2.0.0p29 and earlier, and version 1.6.0. An attacker can exploit the vulnerability to update the program log file...
Checkmk 代码注入漏洞
Checkmk is an editor. A security vulnerability exists in Tribe29 Checkmk version 2.1.0p10 and earlier, version 2.0.0p27 and earlier, version 1.6.0p29 and earlier. An attacker can exploit the vulnerability to inject arbitrary PHP code...
Checkmk 安全漏洞
Checkmk is an editor. A security vulnerability exists in Tribe29 Checkmk version 2.1.0p13 and earlier, version 2.0.0p29 and earlier, which stems from incorrect authorization controls. An attacker could exploit the vulnerability to obtain sensitive information...
PT-2023-15696 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6.0 and earlier Checkmk versions 2.0.0 through 2.0.0p29 Checkmk versions 2.1.0 through 2.1.0p13 Description: A sensitive host secret is disclosed in the cmk-update-agent.log file, allowing an attacker to gain access to the...
PT-2023-14900 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6.0 through 1.6.0p29 Checkmk versions 2.0.0 through 2.0.0p27 Checkmk versions 2.1.0 through 2.1.0p10 Description: The issue allows an attacker with User Management permissions, as well as LDAP administrators in certain...
Checkmk 操作系统命令注入漏洞
Checkmk is an editor. Tribe29 Checkmk suffers from an operating system command injection vulnerability that stems from the presence of a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands within the local privileges of the application...
Checkmk < 1.6.0p29, 2.0.x < 2.0.0p25 Privilege Escalation Vulnerability
Checkmk is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:checkmk:checkmk"; if...
CVE-2022-43440
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
CVE-2022-43440
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
CVE-2022-43440
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
Code injection
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
UBUNTU-CVE-2022-43440
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
CVE-2022-43440 Privilege escalation via manipulated unixcat executable
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
CVE-2022-43440 Privilege escalation via manipulated unixcat executable
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...
CVE-2022-43440
CVE-2022-43440 affects Checkmk: Uncontrolled Search Path Element in Checkmk Agent allows a local attacker to escalate privileges by manipulating the unixcat executable. Impacts Checkmk server deployments with vulnerable Agent/orchestrations prior to 2.1.0p1, 2.0.0p25, or 1.6.0p29. Root cause is a...
Checkmk 代码问题漏洞
Checkmk is an editor. Checkmk Agent has a security vulnerability. An attacker can elevate privileges by manipulating unixcat...
PT-2023-14204 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.1.0p1 Checkmk versions prior to 2.0.0p25 Checkmk versions prior to 1.6.0p29 Description: The issue allows a site user to escalate privileges via a manipulated unixcat executable due to an uncontrolled search path...
CVE-2023-0284
Improper Input Validation of LDAP user IDs in Tribe29 Checkmk allows attackers that can control LDAP user IDs to manipulate files on the server. Checkmk = 2.1.0p19, Checkmk = 2.0.0p32, and all versions of Checkmk 1.6.0 EOL are affected...
CVE-2023-0284
Improper Input Validation of LDAP user IDs in Tribe29 Checkmk allows attackers that can control LDAP user IDs to manipulate files on the server. Checkmk = 2.1.0p19, Checkmk = 2.0.0p32, and all versions of Checkmk 1.6.0 EOL are affected...