Description
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable
Published: 2023-02-09
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-46443 Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable
References
Link Providers
https://checkmk.com/werk/14087 cve-icon cve-icon
History

Mon, 24 Mar 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Checkmk Checkmk
cve-icon MITRE

Status: PUBLISHED

Assigner: Tribe29

Published:

Updated: 2025-03-24T15:15:20.026Z

Reserved: 2023-01-18T15:49:58.102Z

Link: CVE-2022-43440

cve-icon Vulnrichment

Updated: 2024-08-03T13:32:58.405Z

cve-icon NVD

Status : Modified

Published: 2023-02-09T09:15:11.617

Modified: 2024-11-21T07:26:29.553

Link: CVE-2022-43440

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses