CVE-2024-0638 | Checkmk up to 2.0.0p39/2.1.0p40/2.2.0p23/2.3.0b3 Agent Plugin least privilege violation

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability was found in Checkmk up to 2.0.0p39/2.1.0p40/2.2.0p23/2.3.0b3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Agent Plugin. The manipulation leads to least privilege violation.

This vulnerability is known as CVE-2024-0638. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0638 | Checkmk up to 2.0.0p39/2.1.0p40/2.2.0p23/2.3.0b3 Agent Plugin least privilege violation

Related Posts

CVE-2024-0104 | NVIDIA Mellanox OS/ONYX/Skyway/MetroX-3 XC/MetroX-2 LDAP AAA Component access control

CVE-2024-39906 | havenweb haven IndieAuth injection (GHSA-65cm-7g24-hm9f / c52f07c)

CVE-2024-30802 | Vehicle Management System 7.31.0.3_20230412 login.html Privilege Escalation

CVE-2023-45698 | HCL Sametime up to 12.0.1 FP1 Outlook Add-in clickjacking (KB0109082)