Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-5338
HistoryAug 22, 2014 - 12:00 a.m.

CVE-2014-5338

2014-08-2200:00:00
ubuntu.com
ubuntu.com
16

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the multisite
component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allow remote
authenticated users to inject arbitrary web script or HTML via unspecified
vectors to the (1) render_status_icons function in htmllib.py or (2)
ajax_action function in actions.py.

Notes

Author Note
jdstrand per Debian, code not present in 2.3

Related

cve 1
prion 1
veracode 3
nessus 7
securityvulns 2
fedora 6
redhat 1
openvas 4
cve
cve
CVE-2014-5338
2014-08-22 14:55:00
prion
prion
Cross site scripting
2014-08-22 14:55:00
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 09:06:54
Arbitrary Code Execution
2019-05-02 05:41:25
Improper Access Control
2019-05-02 05:41:24
nessus
nessus
Fedora 21 : check-mk-1.2.4p5-1.fc21 (2014-11160)
2014-09-29 00:00:00
Check_MK 1.2.4 < 1.2.4p4 / 1.2.5 < 1.2.5i4 Multiple Vulnerabilities
2017-06-28 00:00:00
Fedora 21 : check-mk-1.2.4p5-2.fc21 (2014-11896)
2014-10-06 00:00:00
securityvulns
securityvulns
Deutsche Telekom CERT Advisory [DTC-A-20140820-001] check_mk vulnerabilities
2014-08-26 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2014-08-26 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-2.fc21
2014-10-05 08:14:05
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-1.fc21
2014-09-27 10:06:43
[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-2.fc19
2014-10-10 15:59:01
redhat
redhat
(RHSA-2015:1495) Important: Red Hat Gluster Storage 3.1 update
2015-07-29 00:00:00
openvas
openvas
Fedora Update for check-mk FEDORA-2014-11929
2014-10-11 00:00:00
Fedora Update for check-mk FEDORA-2014-11895
2014-10-11 00:00:00
Fedora Update for check-mk FEDORA-2014-11082
2014-10-01 00:00:00

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.3%

JSON
Related for UB:CVE-2014-5338
cve1prion1veracode3nessus7securityvulns2fedora6redhat1openvas4