checkmk 2.3.0 Patch 14

CPE Details

checkmk 2.3.0 Patch 14
checkmk
checkmk
2.3.0
2024-12-02
13h50 +00:00
2024-12-02
13h50 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:checkmk:checkmk:2.3.0:p14:*:*:*:*:*:*

Informations

Vendor

checkmk

Product

checkmk

Version

2.3.0

Update

p14

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-47094 2024-11-29 09h52 +00:00 Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p22, <2.2.0p37, <2.1.0p50 (EOL) causes remote site secrets to be written to web log files accessible to local site users.
5.7
Moyen
CVE-2024-38863 2024-10-14 07h19 +00:00 Exposure of CSRF tokens in query parameters on specific requests in Checkmk GmbH's Checkmk versions <2.3.0p18, <2.2.0p35 and <2.1.0p48 could lead to a leak of the token to facilitate targeted phishing attacks.
2
Bas
CVE-2024-38862 2024-10-14 07h19 +00:00 Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p18, <2.2.0p35, <2.1.0p48 and <=2.0.0p39 (EOL) causes SNMP and IMPI secrets of host and folder properties to be written to audit log files accessible to administrators.
5.1
Moyen
CVE-2024-6747 2024-10-10 07h43 +00:00 Information leakage in mknotifyd in Checkmk before 2.3.0p18, 2.2.0p36, 2.1.0p49 and in 2.0.0p39 (EOL) allows attacker to get potentially sensitive data
7.5
Haute
CVE-2024-8606 2024-09-23 07h01 +00:00 Bypass of two factor authentication in RestAPI in Checkmk < 2.3.0p16 and < 2.2.0p34 allows authenticated users to bypass two factor authentication
9.2
Critique
CVE-2024-38860 2024-09-17 14h01 +00:00 Improper neutralization of input in Checkmk before versions 2.3.0p16 and 2.2.0p34 allows attackers to craft malicious links that can facilitate phishing attacks.
5.1
Moyen