CVE Vulnerabilities

CVE-2014-5339

Published: Sep 02, 2014 | Modified: Oct 09, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated users to write check_mk config files (.mk files) to arbitrary locations via vectors related to row selections.

Affected Software

Name Vendor Start Version End Version
Check_mk Check_mk_project * 1.2.4 (including)
Check_mk Check_mk_project 1.2.4 (including) 1.2.4 (including)
Check_mk Check_mk_project 1.2.4-p1 (including) 1.2.4-p1 (including)
Check_mk Check_mk_project 1.2.4-p2 (including) 1.2.4-p2 (including)
Check_mk Check_mk_project 1.2.5-i1 (including) 1.2.5-i1 (including)
Check_mk Check_mk_project 1.2.5-i2 (including) 1.2.5-i2 (including)
Check_mk Check_mk_project 1.2.5-i3 (including) 1.2.5-i3 (including)

References