CVE-2024-6572 | Checkmk up to 2.0.0p39/2.1.0p47/2.2.0p32/2.3.0p14 Check SFTP Service key exchange without entity authentication

Posted by Angelo Barbosa | Sep 9, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Checkmk up to 2.0.0p39/2.1.0p47/2.2.0p32/2.3.0p14. Affected is an unknown function of the component Check SFTP Service. The manipulation leads to key exchange without entity authentication.

This vulnerability is traded as CVE-2024-6572. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-6572 | Checkmk up to 2.0.0p39/2.1.0p47/2.2.0p32/2.3.0p14 Check SFTP Service key exchange without entity authentication

Related Posts

CVE-2023-47304 | Vonage Box Telephone Adapter VDV23 VDV21-3.2.11-0.5.1 UART improper authentication

CVE-2024-3027 | Smart Slider Plugin up to 3.5.1.22 on WordPress File Upload authorization

CVE-2024-1707 | GARO WALLBOX GLB+ T2EV7 0.5 Software Update /index.jsp#settings Reference cross site scripting

CVE-2024-34942 | Tenda FH1206 1.2.0.8 ip/goform/exeCommand funcpara1 stack-based overflow