CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper neutralization of livestatus command delimiters in ajaxsearch in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command executi...

8.8CVSS8.2AI score0.00381EPSS

Exploits0References2

Positive Technologies•added 2025/07/04 12:0 a.m.•4 views

PT-2025-27866 · Checkmk · Checkmk

Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.4.0p6 Checkmk versions prior to 2.3.0p35 Checkmk versions prior to 2.2.0p44 Checkmk version 2.1.0 Description: The issue is related to the improper neutralization of Livestatus command delimiters in the autocomplet...

8.8CVSS6.3AI score0.0035EPSS

Exploits0References7

RedhatCVE•added 2025/05/23 6:35 a.m.•13 views

CVE-2024-6542

Improper neutralization of livestatus command delimiters in mknotifyd in Checkmk = 2.0.0p39, 2.1.0p47, 2.2.0p32 and 2.3.0p11 allows arbitrary livestatus command execution...

6.5CVSS7AI score0.00229EPSS

Exploits0References1

OSV•added 2025/04/10 8:15 a.m.•1 views

UBUNTU-CVE-2024-38865

Improper neutralization of livestatus command delimiters in a specific endpoint within RestAPI of Checkmk prior to 2.2.0p39, 2.3.0p25, and 2.1.0p51 EOL allows arbitrary livestatus command execution. Exploitation requires the attacker to have a contact group assigned to their user account and for ...

8.8CVSS5.9AI score0.003EPSS

Exploits0References3

NVD•added 2024/07/22 10:15 a.m.•15 views

CVE-2024-6542

Improper neutralization of livestatus command delimiters in mknotifyd in Checkmk = 2.0.0p39, 2.1.0p47, 2.2.0p32 and 2.3.0p11 allows arbitrary livestatus command execution...

6.5CVSS0.00229EPSS

Exploits0References1

CVE•added 2024/07/22 9:50 a.m.•44 views

CVE-2024-6542

CVE-2024-6542 affects Checkmk mknotifyd. The vulnerability arises from improper neutralization of command delimiters, enabling arbitrary command execution. Affected versions: Checkmk <= 2.0.0p39, and < 2.1.0p47, < 2.2.0p32,

6.5CVSS6.7AI score0.00229EPSS

Exploits0References1Affected Software1

OSV•added 2023/11/22 5:15 p.m.•14 views

CVE-2023-6156

Improper neutralization of livestatus command delimiters in the availability timeline in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command execution for authorized users...

8.8CVSS7.2AI score

Exploits0References1

NVD•added 2023/11/22 5:15 p.m.•10 views

CVE-2023-6157

Improper neutralization of livestatus command delimiters in ajaxsearch in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command execution for authorized users...

8.8CVSS0.00381EPSS

Exploits0References1

OSV•added 2023/11/22 5:15 p.m.•12 views

CVE-2023-6157

Improper neutralization of livestatus command delimiters in ajaxsearch in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command execution for authorized users...

8.8CVSS7.2AI score

Exploits0References1

Prion•added 2023/11/22 5:15 p.m.•18 views

Input validation

Improper neutralization of livestatus command delimiters in ajaxsearch in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command execution for authorized users...

6.5CVSS7.5AI score0.00381EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/22 5:15 p.m.•21 views

Input validation

6.5CVSS7.5AI score0.00381EPSS

Exploits0References1Affected Software1

OSV•added 2023/11/22 5:15 p.m.•0 views

UBUNTU-CVE-2023-6157

Improper neutralization of livestatus command delimiters in ajaxsearch in Checkmk = 2.0.0p39, 2.1.0p37, and 2.2.0p15 allows arbitrary livestatus command execution for authorized users...

8.8CVSS6AI score0.00381EPSS

Exploits0References3

NVD•added 2023/05/17 9:15 a.m.•12 views

CVE-2023-31208

Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk 2.0.0p36, 2.1.0p28, and 2.2.0b8 beta allows arbitrary livestatus command execution for authorized users...

8.8CVSS8.8AI score0.01344EPSS

Exploits0References1

Prion•added 2023/05/17 9:15 a.m.•11 views

Input validation

Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk 2.0.0p36, 2.1.0p28, and 2.2.0b8 beta allows arbitrary livestatus command execution for authorized users...

6.5CVSS8.8AI score0.01344EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/17 8:24 a.m.•13 views

CVE-2023-31208 Livestatus command injection in RestAPI

Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk 2.0.0p36, 2.1.0p28, and 2.2.0b8 beta allows arbitrary livestatus command execution for authorized users...

8.3CVSS9.1AI score0.01344EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by