2 matches found
CVE-2024-47092
CVE-2024-47092 affects the Checkmk Exchange plugin check-mk-api prior to 5.8.1. The underlying issue is insecure deserialization and improper certificate validation in the plugin, with CVSS v3.1 base score 9.8 (CRITICAL) and CVSS4 base score 7.7 (HIGH). Attack vector is NETWORK with no user inter...
CVE-2025-58124
CVE-2025-58124 affects the Checkmk Exchange plugin check-mk-api, with the root cause being improper certificate validation. This enables a MitM attacker to intercept traffic in network communications. Public descriptions consistently reference the vulnerable component as the plugin for Checkmk Ex...