Lucene search

Ubuntu.comUB:CVE-2023-23548

HistoryAug 01, 2023 - 12:00 a.m.

CVE-2023-23548

2023-08-0100:00:00

ubuntu.com

cve-2023-23548

checkmk

business intelligence

reflected xss

unix

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

17.1%

JSON

Reflected XSS in business intelligence in Checkmk <2.2.0p8, <2.1.0p32,
<2.0.0p38, <=1.6.0p30.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchcheck-mk< anyUNKNOWN
ubuntu16.04noarchcheck-mk< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	check-mk	< any	UNKNOWN
ubuntu	16.04	noarch	check-mk	< any	UNKNOWN

References

checkmk.com/werk/15691

launchpad.net/bugs/cve/CVE-2023-23548

nvd.nist.gov/vuln/detail/CVE-2023-23548

security-tracker.debian.org/tracker/CVE-2023-23548

www.cve.org/CVERecord?id=CVE-2023-23548

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for UB:CVE-2023-23548