Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2021-36563
HistoryJul 26, 2021 - 12:00 a.m.

CVE-2021-36563

2021-07-2600:00:00
ubuntu.com
ubuntu.com
12

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

29.6%

JSON

The CheckMK management web console (versions 1.5.0 to 2.0.0) does not
sanitise user input in various parameters of the WATO module. This allows
an attacker to open a backdoor on the device with HTML content and
interpreted by the browser (such as JavaScript or other client-side
scripts), the XSS payload will be triggered when the user accesses some
specific sections of the application. In the same sense a very dangerous
potential way would be when an attacker who has the monitor role (not
administrator) manages to get a stored XSS to steal the secretAutomation
(for the use of the API in administrator mode) and thus be able to create
another administrator user who has high privileges on the CheckMK
monitoring web console. Another way is that persistent XSS allows an
attacker to modify the displayed content or change the victim’s
information. Successful exploitation requires access to the web management
interface, either with valid credentials or with a hijacked session.

Notes

Author Note
0xnishit fix: https://github.com/tribe29/checkmk/commit/821f99e7ca3dcb41131df25023390a71ef31ad1b
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchcheck-mk< 1.2.8p16-1ubuntu0.2UNKNOWN
ubuntu16.04noarchcheck-mk< 1.2.6p12-1ubuntu0.16.04.1+esm1UNKNOWN

Related

githubexploit 1
cnvd 1
prion 1
cve 1
openvas 3
cvelist 1
nvd 1
nessus 2
ubuntu 2
osv 2
githubexploit
githubexploit
Exploit for Cross-site Scripting in Checkmk
2021-07-27 11:22:21
cnvd
cnvd
CheckMK management web console cross-site scripting vulnerability
2021-07-30 00:00:00
prion
prion
Cross site scripting
2021-07-26 18:15:00
cve
cve
CVE-2021-36563
2021-07-26 18:15:08
openvas
openvas
Check MK < 1.6.0p25, 2.0.x < 2.0.0p4 XSS Vulnerability
2021-07-28 00:00:00
Ubuntu: Security Advisory (USN-5527-2)
2023-01-27 00:00:00
Ubuntu: Security Advisory (USN-5527-1)
2022-07-21 00:00:00
cvelist
cvelist
CVE-2021-36563
2021-07-26 17:19:40
nvd
nvd
CVE-2021-36563
2021-07-26 18:15:08
nessus
nessus
Ubuntu 16.04 ESM : Checkmk vulnerabilities (USN-5527-2)
2023-10-23 00:00:00
Ubuntu 18.04 LTS : Checkmk vulnerabilities (USN-5527-1)
2022-07-20 00:00:00
ubuntu
ubuntu
Checkmk vulnerabilities
2022-07-20 00:00:00
Checkmk vulnerabilities
2022-07-20 00:00:00
osv
osv
check-mk vulnerabilities
2022-07-20 08:36:48
check-mk vulnerabilities
2022-07-20 10:26:46

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

29.6%

JSON
Related for UB:CVE-2021-36563
githubexploit1cnvd1prion1cve1openvas3cvelist1nvd1nessus2ubuntu2osv2