9 matches found
EUVD-2023-33548
Malicious code in bioql PyPI...
EUVD-2022-33614
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-2020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient permission checks in the REST API in Tribe29 Checkmk = 2.1.0p27 and = 2.2.0b4 beta allow unauthorized users to schedule downtimes for any host...
CVE-2023-2020
Insufficient permission checks in the REST API in Tribe29 Checkmk = 2.1.0p27 and = 2.2.0b4 beta allow unauthorized users to schedule downtimes for any host...
CVE-2022-29271
In Nagios XI through 5.8.5, a read-only Nagios user due to an incorrect permission check is able to schedule downtime for any host/services. This allows an attacker to permanently disable all monitoring checks...
UBUNTU-CVE-2023-2020
Insufficient permission checks in the REST API in Tribe29 Checkmk = 2.1.0p27 and = 2.2.0b4 beta allow unauthorized users to schedule downtimes for any host...
CVE-2023-2020
The CVE-2023-2020 entry concerns Checkmk (Tribe29) REST API permission checks. Affected products are Checkmk versions prior to 2.1.0p27 and prior to 2.2.0b4 (beta). The root cause is insufficient permission checks in the REST API, which allows unauthorized users to schedule downtimes for any host...
PT-2023-17413 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.1.0p27 Checkmk versions prior to 2.2.0b4 Description: The issue is related to insufficient permission checks in the REST API, allowing unauthorized users to schedule downtimes for any host. Recommendations: For...
PT-2022-19513 · Nagios Xi · Nagios Xi
Name of the Vulnerable Software and Affected Versions: Nagios XI versions 5.8.5 and earlier Description: The issue allows a read-only Nagios user to schedule downtime for any host or services due to an incorrect permission check. This enables an attacker to permanently disable all monitoring...