1445 matches found
CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM position to intercept traffic...
CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin check-mk-api allows attackers in MitM position to intercept traffic...
CVE-2025-58124
CVE-2025-58124 affects the Checkmk Exchange plugin check-mk-api, with the root cause being improper certificate validation. This enables a MitM attacker to intercept traffic in network communications. Public descriptions consistently reference the vulnerable component as the plugin for Checkmk Ex...
CVE-2025-58123 Lack of TLS validation in plugin BGP Monitoring on Checkmk Exchange
Improper Certificate Validation in Checkmk Exchange plugin BGP Monitoring allows attackers in MitM position to intercept traffic...
CVE-2025-58123
CVE-2025-58123 affects the Checkmk Exchange plugin BGP Monitoring. The root cause is improper certificate validation, enabling MitM attackers to intercept traffic when positioned on the network. Documented sources confirm the vulnerability description but do not provide explicit affected versions...
Checkmk Exchange plugin BGP Monitoring 安全漏洞
Checkmk Exchange plugin BGP Monitoring is a session visualization management and service state monitoring software from Checkmk, Germany. A security vulnerability exists in Checkmk Exchange plugin BGP Monitoring that stems from improper certificate validation and could lead to a man-in-the-middle...
Checkmk Exchange plugin VMware vSAN 安全漏洞
Checkmk Exchange plugin VMware vSAN is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin VMware vSAN that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
Checkmk Exchange plugin Dell Powerscale 安全漏洞
Checkmk Exchange plugin Dell Powerscale is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin Dell Powerscale that stems from improper certificate validation, which could lead to a man-in-the-middle attacker intercepting traffic...
Checkmk Exchange plugin Freebox v6 agent 安全漏洞
Checkmk Exchange plugin Freebox v6 agent is a plugin for device status monitoring from Checkmk Germany. A security vulnerability exists in Checkmk Exchange plugin Freebox v6 agent that stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
PT-2025-35083
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Dell Powerscale affected versions not specified Description: The Checkmk Exchange plugin for Dell Powerscale contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle Mit...
PT-2025-35082
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin VMware vSAN affected versions not specified Description: The Checkmk Exchange plugin for VMware vSAN contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM positi...
PT-2025-35081
Name of the Vulnerable Software and Affected Versions: Checkmk Exchange plugin Freebox v6 agent affected versions not specified Description: The Checkmk Exchange plugin Freebox v6 agent contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM...
Checkmk Exchange plugin check-mk-api 安全漏洞
Checkmk Exchange plugin check-mk-api is a plugin from Checkmk, Inc. A security vulnerability exists in Checkmk Exchange plugin check-mk-api, which stems from improper certificate validation and could lead to a man-in-the-middle attacker intercepting traffic...
PT-2025-35080
Name of the Vulnerable Software and Affected Versions: Checkmk versions affected versions not specified Description: The Checkmk Exchange plugin check-mk-api contains an improper certificate validation flaw. This allows attackers positioned in a Man-in-the-Middle MitM position to intercept networ...
Linux Distros Unpatched Vulnerability : CVE-2022-47909
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Livestatus Query Language LQL injection in the AuthUser HTTP query header of Tribe29's Checkmk = 2.1.0p11, Checkmk = 2.0.0p28, and all versions of Checkmk 1.6.0...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
UBUNTU-CVE-2025-32918
Improper neutralization of Livestatus command delimiters in autocomplete endpoint within the RestAPI of Checkmk versions 2.4.0p6, 2.3.0p35, 2.2.0p44, and 2.1.0 EOL allows an authenticated user to inject arbitrary Livestatus commands...
CVE-2025-32918
CVE-2025-32918 affects Checkmk where the Livestatus delimiter is improperly neutralized in the RestAPI autocomplete endpoint. This allows an authenticated user to inject arbitrary Livestatus commands. Affected versions are Checkmk <2.4.0p6, <2.3.0p35,