Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-1742

Invocation of the sqlplus command with sensitive information in the command line in the mk_oracle Checkmk agent plugin before Checkmk 2.3.0b4 (beta), 2.2.0p24, 2.1.0p41 and 2.0.0 (EOL) allows the extraction of this information from the process list.

Published

2024-03-22T11:15:46.457

Last Modified

2024-12-04T16:50:05.197

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.8 (LOW)

Weaknesses

Type: Secondary
CWE-214
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	checkmk	checkmk	≤ 2.0.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.1.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.2.0	Yes
Application	checkmk	checkmk	2.3.0	Yes
Application	checkmk	checkmk	2.3.0	Yes
Application	checkmk	checkmk	2.3.0	Yes

References

https://checkmk.com/werk/16234 Vendor Advisory ([email protected])
https://checkmk.com/werk/16234 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)