Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-43440

Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable

Published

2023-02-09T09:15:11.617

Last Modified

2024-11-21T07:26:29.553

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-427
Type: Primary
CWE-427

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	checkmk	checkmk	< 1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	1.6.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes

References

https://checkmk.com/werk/14087 Vendor Advisory ([email protected])
https://checkmk.com/werk/14087 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)