← Back

CVE-2022-48320

nvd nist
Published: Feb 20, 2023Modified: Jun 17, 2026

JSON object

Loading...
4.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Exploitability: 2.8 / Impact: 1.4
Source: NVD

Description

Cross-site Request Forgery (CSRF) in Tribe29's Checkmk <= 2.1.0p17, Checkmk <= 2.0.0p31, and all versions of Checkmk 1.6.0 (EOL) allow an attacker to add new visual elements to multiple pages.

Affected (111)

Products: Checkmk: Checkmk
1 product
Checkmk
Configuration A
27 vulnerable
Vulnerable SoftwareAffected Versions
Checkmk
Version 2.1.0
Version 2.1.0 b1
Version 2.1.0 b2
Version 2.1.0 b3
Version 2.1.0 b4
Version 2.1.0 b5
Version 2.1.0 b6
Version 2.1.0 b7
Version 2.1.0 b8
Version 2.1.0 b9
Version 2.1.0 p10
Version 2.1.0 p11
Version 2.1.0 p12
Version 2.1.0 p13
Version 2.1.0 p14
Version 2.1.0 p15
Version 2.1.0 p16
Version 2.1.0 p17
Version 2.1.0 p1
Version 2.1.0 p2
Version 2.1.0 p3
Version 2.1.0 p4
Version 2.1.0 p5
Version 2.1.0 p6
Version 2.1.0 p7
Version 2.1.0 p8
Version 2.1.0 p9
Configuration B
41 vulnerable
Vulnerable SoftwareAffected Versions
Checkmk
Version 2.0.0
Version 2.0.0 b1
Version 2.0.0 b2
Version 2.0.0 b3
Version 2.0.0 b4
Version 2.0.0 b5
Version 2.0.0 b6
Version 2.0.0 b7
Version 2.0.0 b8
Version 2.0.0 i1
Version 2.0.0 p10
Version 2.0.0 p11
Version 2.0.0 p12
Version 2.0.0 p13
Version 2.0.0 p14
Version 2.0.0 p15
Version 2.0.0 p16
Version 2.0.0 p17
Version 2.0.0 p18
Version 2.0.0 p19
Version 2.0.0 p1
Version 2.0.0 p20
Version 2.0.0 p21
Version 2.0.0 p22
Version 2.0.0 p23
Version 2.0.0 p24
Version 2.0.0 p25
Version 2.0.0 p26
Version 2.0.0 p27
Version 2.0.0 p28
Version 2.0.0 p29
Version 2.0.0 p2
Version 2.0.0 p30
Version 2.0.0 p31
Version 2.0.0 p3
Version 2.0.0 p4
Version 2.0.0 p5
Version 2.0.0 p6
Version 2.0.0 p7
Version 2.0.0 p8
Version 2.0.0 p9
Configuration C
43 vulnerable
Vulnerable SoftwareAffected Versions
Checkmk
Version 1.6.0
Version 1.6.0 b10
Version 1.6.0 b11
Version 1.6.0 b12
Version 1.6.0 b1
Version 1.6.0 b2
Version 1.6.0 b3
Version 1.6.0 b4
Version 1.6.0 b5
Version 1.6.0 b6
Version 1.6.0 b7
Version 1.6.0 b8
Version 1.6.0 b9
Version 1.6.0 p10
Version 1.6.0 p11
Version 1.6.0 p12
Version 1.6.0 p13
Version 1.6.0 p14
Version 1.6.0 p15
Version 1.6.0 p16
Version 1.6.0 p17
Version 1.6.0 p18
Version 1.6.0 p19
Version 1.6.0 p1
Version 1.6.0 p20
Version 1.6.0 p21
Version 1.6.0 p22
Version 1.6.0 p23
Version 1.6.0 p24
Version 1.6.0 p25
Version 1.6.0 p26
Version 1.6.0 p27
Version 1.6.0 p28
Version 1.6.0 p29
Version 1.6.0 p2
Version 1.6.0 p30
Version 1.6.0 p3
Version 1.6.0 p4
Version 1.6.0 p5
Version 1.6.0 p6
Version 1.6.0 p7
Version 1.6.0 p8
Version 1.6.0 p9

References (2)

Source: security@checkmk.com
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory

Timeline

No history available yet.