PT-2024-37843 · Checkmk · Checkmk

Published

2024-10-10

Updated

2024-10-15

CVE-2024-6747

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Checkmk versions prior to 2.3.0p18 Checkmk versions prior to 2.2.0p36 Checkmk versions prior to 2.1.0p49 Checkmk version 2.0.0p39

Description Information leakage in mknotifyd allows an attacker to obtain potentially sensitive data. This issue exists in Checkmk versions before 2.3.0p18, 2.2.0p36, 2.1.0p49, and in 2.0.0p39.

Recommendations For versions prior to 2.3.0p18, update to version 2.3.0p18 or later. For versions prior to 2.2.0p36, update to version 2.2.0p36 or later. For versions prior to 2.1.0p49, update to version 2.1.0p49 or later. For version 2.0.0p39, consider upgrading to a supported version, as 2.0.0p39 is end of life.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-201CWE-200

Related Identifiers

CVE-2024-6747

Affected Products

Checkmk

PT-2024-37843 · Checkmk · Checkmk

CVE-2024-6747

Weakness Enumeration

Related Identifiers

Affected Products

References · 11