20 matches found
EUVD-2023-26470
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-6287
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files. CVE-2023-6287 No...
Linux Distros Unpatched Vulnerability : CVE-2023-22309
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4. CVE-2023-22309 Note that Nessus relies on the presence of the package as...
CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
Code injection
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local attacker to retrieve passwords via reading log files...
CVE-2023-6287
The CVE-2023-6287 entry concerns Tribe29 Checkmk Appliance (Webconf) prior to version 1.6.8. The vulnerability allows a local attacker to retrieve passwords by reading log files due to a sensitive data exposure in Webconf. Affected software: Tribe29 Checkmk Appliance before 1.6.8. Root cause: imp...
CVE-2023-22318
Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5...
CVE-2023-22318 Denial of service against webconf
Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5...
CVE-2023-22318
CVE-2023-22318 affects Tribe29 Checkmk Appliance prior to version 1.6.5, with a Denial of Service in Webconf. The vulnerability is described across multiple sources as a Webconf-related issue that can impact availability, with CVSS 3.1 base score 7.5 (HIGH) and an attack vector over the network w...
CVE-2023-22318 Denial of service against webconf
Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5...
CVE-2023-22309
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4...
CVE-2023-22309
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4...
Cross site scripting
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4...
CVE-2023-22309 Reflected Cross Site Scripting (XSS)
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4...
CVE-2023-22309
CVE-2023-22309 describes a reflective XSS in Webconf of the Tribe29 Checkmk Appliance prior to version 1.6.4. The issue stems from inadequate input filtering/escaping in Webconf, enabling a crafted payload to impact web pages. Affected product: Tribe29 Checkmk Appliance (Webconf component); affec...
CVE-2023-22309 Reflected Cross Site Scripting (XSS)
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4...
UBUNTU-CVE-2023-22294
Privilege escalation in Tribe29 Checkmk Appliance before 1.6.4 allows authenticated site users to escalate privileges via incorrectly set permissions...
UBUNTU-CVE-2023-22307
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local attacker to retrieve passwords via reading log files...
PT-2023-18404 · Tribe29 · Tribe29 Checkmk Appliance
Name of the Vulnerable Software and Affected Versions: Tribe29 Checkmk Appliance versions prior to 1.6.4 Description: The issue allows authenticated site users to escalate privileges due to incorrectly set permissions. Recommendations: For versions prior to 1.6.4, update to version 1.6.4 or later...