216.73.216.6

CVE-2024-38858

· Published 02/09/2024 12:15 · Modified 04/09/2024 14:39

Labels: CVE-2024-38858 2024-09-02CVE-2024-38858CWE-79[email protected]

Essential information

Published
02/09/2024 12:15
Modified
04/09/2024 14:39
Author
Creator
CVSS
6.1 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS metrics

Description

Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:-:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p1:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p10:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p11:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p12:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p13:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p2:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p3:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p4:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p5:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p6:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p7:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p8:*:*:*:*:*:*
checkmk / checkmk cpe:2.3:a:checkmk:checkmk:2.3.0:p9:*:*:*:*:*:*

References