Lucene search
Tribe29VULNRICHMENT:CVE-2023-22359HistoryJun 26, 2023 - 6:51 a.m.
CVE-2023-22359 User-enumeration in RestAPI
2023-06-2606:51:24
CWE-203
Tribe29
github.com
1
cve-2023-22359
user-enumeration
checkmk
authenticated-attacker
usernames
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
6.6
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
User enumeration in Checkmk <=2.2.0p4 allows an authenticated attacker to enumerate usernames.
References
Related
prion
prion
Code injection
2023-06-26 07:15:00
cvelist
cvelist
CVE-2023-22359 User-enumeration in RestAPI
2023-06-26 06:51:24
cve
cve
CVE-2023-22359
2023-06-26 07:15:09
openvas
openvas
Checkmk 2.2.x < 2.2.0p5 Information Disclosure Vulnerability
2023-06-27 00:00:00
ubuntucve
ubuntucve
CVE-2023-22359
2023-06-26 00:00:00
osv
osv
CVE-2023-22359
2023-06-26 07:15:09
nvd
nvd
CVE-2023-22359
2023-06-26 07:15:09
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
6.6
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-22359