CVE-2024-38865

Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.2.0p39 Checkmk versions prior to 2.3.0p25 Checkmk versions prior to 2.1.0p51

Description: The issue is related to improper neutralization of livestatus command delimiters in a specific endpoint within the RestAPI of Checkmk. This allows for arbitrary livestatus command execution. Exploitation requires the attacker to have a contact group assigned to their user account and for an event to originate from a host with the same contact group or from an event generated with an unknown host.

Recommendations: For versions prior to 2.2.0p39, update to version 2.2.0p39 or later. For versions prior to 2.3.0p25, update to version 2.3.0p25 or later. For versions prior to 2.1.0p51, update to a supported version, as 2.1.0p51 is end-of-life.