5 matches found
CVE-2022-47909
Livestatus Query Language LQL injection in the AuthUser HTTP query header of Tribe29's Checkmk = 2.1.0p11, Checkmk = 2.0.0p28, and all versions of Checkmk 1.6.0 EOL allows an attacker to perform direct queries to the application's core from localhost...
Checkmk 2.0.x < 2.0.0p29, 2.1.x < 2.1.0p12 Improper Input Validation Vulnerability
Checkmk is prone to an improper input validation vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:checkmk:checkmk";...
CVE-2022-47909
Livestatus Query Language LQL injection in the AuthUser HTTP query header of Tribe29's Checkmk = 2.1.0p11, Checkmk = 2.0.0p28, and all versions of Checkmk 1.6.0 EOL allows an attacker to perform direct queries to the application's core from localhost...
CVE-2022-47909
Livestatus Query Language LQL injection in the AuthUser HTTP query header of Tribe29's Checkmk = 2.1.0p11, Checkmk = 2.0.0p28, and all versions of Checkmk 1.6.0 EOL allows an attacker to perform direct queries to the application's core from localhost...
CVE-2022-47909
CVE-2022-47909 – LQL injection in Checkmk AuthUser header . The vulnerability affects Tribe29 Checkmk ≤ 2.1.0p11, Checkmk ≤ 2.0.0p28, and all Checkmk 1.6.0 (EOL). It stems from a Livestatus Query Language (LQL) injection in the AuthUser HTTP query header, which allows an attacker to perform direc...