CVE-2022-47909

Name of the Vulnerable Software and Affected Versions Checkmk versions 1.6.0 through 2.1.0p11 Checkmk versions 2.0.0 through 2.0.0p28

Description The issue allows an attacker to perform direct queries to the application's core from localhost by injecting Livestatus Query Language (LQL) in the AuthUser HTTP query header.

Recommendations For Checkmk versions 1.6.0 through 2.1.0p11, update to a version later than 2.1.0p11. For Checkmk versions 2.0.0 through 2.0.0p28, update to a version later than 2.0.0p28. As a temporary workaround, consider restricting access to the AuthUser HTTP query header until a patch is available.