Check Mk@1.2.5 Security Vulnerabilities and Issues — Check Mk@1.2.5 CVE List

Lucene search

Check Mk ProjectCheck Mk1.2.5

4 matches found

CVE•added 2014/09/02 2:55 p.m.•49 views

CVE-2014-5340

The wato component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to an automation URL.

9.3CVSS7.4AI score0.0315EPSS

CVE•added 2014/08/22 2:55 p.m.•48 views

CVE-2014-5338

Multiple cross-site scripting (XSS) vulnerabilities in the multisite component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors to the (1) render_status_icons function in htmllib.py or (2) ajax_action...

3.5CVSS5.1AI score0.00288EPSS

CVE•added 2014/09/02 2:55 p.m.•46 views

CVE-2014-5339

Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated users to write check_mk config files (.mk files) to arbitrary locations via vectors related to row selections.

4.9CVSS6.2AI score0.00527EPSS

CVE•added 2018/07/19 5:29 p.m.•45 views

CVE-2014-0243

Check_MK through 1.2.5i2p1 allows local users to read arbitrary files via a symlink attack to a file in /var/lib/check_mk_agent/job.

5.5CVSS5.1AI score0.00049EPSS