PT-2019-6462 · Checkmk+1 · Checkmk Exchange Plugin+1
Jakob Hartmann
+1
·
Published
2019-07-29
·
Updated
2024-12-20
·
CVE-2024-38861
CVSS v3.1
7.4
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
MikroTik versions 0.4a mk through 2.0a
MikroTik versions 2.0.0 through 2.5.5
Description
The issue is related to improper certificate validation in the Checkmk Exchange plugin for MikroTik routers, which can allow an attacker to intercept traffic. This can be exploited by an attacker in a man-in-the-middle position, potentially leading to spoofing attacks.
Recommendations
For versions 0.4a mk through 2.0a, consider disabling the Checkmk Exchange plugin until a patch is available.
For versions 2.0.0 through 2.5.5, consider restricting access to the plugin to minimize the risk of exploitation.
As a temporary workaround, avoid using the affected plugin in sensitive environments until the issue is resolved.
Fix
Improper Certificate Validation
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Checkmk Exchange Plugin
Mikrotik