Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-0284

Improper Input Validation of LDAP user IDs in Tribe29 Checkmk allows attackers that can control LDAP user IDs to manipulate files on the server. Checkmk <= 2.1.0p19, Checkmk <= 2.0.0p32, and all versions of Checkmk 1.6.0 (EOL) are affected.

Published

2023-01-26T21:18:07.030

Last Modified

2024-11-21T07:36:53.613

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses

Type: Secondary
CWE-20
Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.0.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	tribe29	checkmk	< 2.0.0	Yes

References

https://checkmk.com/werk/15181 Vendor Advisory ([email protected])
https://checkmk.com/werk/15181 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)