Lucene search

Ubuntu.comUB:CVE-2023-22309

HistoryApr 20, 2023 - 12:00 a.m.

CVE-2023-22309

2023-04-2000:00:00

ubuntu.com

cve-2023-22309 cross-site-scripting checkmk appliance unix

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

18.4%

JSON

Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance
before 1.6.4.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchcheck-mk< anyUNKNOWN
ubuntu16.04noarchcheck-mk< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	check-mk	< any	UNKNOWN
ubuntu	16.04	noarch	check-mk	< any	UNKNOWN

References

checkmk.com/werk/9523

launchpad.net/bugs/cve/CVE-2023-22309

nvd.nist.gov/vuln/detail/CVE-2023-22309

security-tracker.debian.org/tracker/CVE-2023-22309

www.cve.org/CVERecord?id=CVE-2023-22309

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

18.4%

JSON

Related for UB:CVE-2023-22309