2 matches found
UBUNTU-CVE-2017-14955
CheckMK before 1.2.8p26 mishandles certain errors within the failed-login save feature because of a race condition, which allows remote attackers to obtain sensitive user information by reading a GUI crash report...
PT-2017-13776 · Mathias Kettner +1 · Checkmk +1
Name of the Vulnerable Software and Affected Versions: Check MK versions prior to 1.2.8p26 Description: The issue arises from a race condition in the failed-login save feature, allowing remote attackers to obtain sensitive user information by reading a GUI crash report. This occurs due to the...