HomePentest-Tools.com Logo

Checkmk 2.0.x < 2.0.0p33, 2.1.x < 2.1.0p19 Path Traversal Vulnerability CVE-2022-4884

Severity
CVSSv3 Score
4.9
Vulnerability description

Checkmk is prone to a path traversal vulnerability.

Risk description

An authenticated user with admin rights is able to upload a malicious MKP leading to a file creation with an attacker controlled path.

Recommendation

Update to version 2.0.0p33, 2.1.0p19 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jan 9, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available