First published: Tue Apr 18 2023(Updated: )
Privilege escalation in Tribe29 Checkmk Appliance before 1.6.4 allows authenticated site users to escalate privileges via incorrectly set permissions.
Credit: security@checkmk.com
Affected Software | Affected Version | How to fix |
---|---|---|
Tribe29 Checkmk | <1.6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this privilege escalation vulnerability is CVE-2023-22294.
The severity of CVE-2023-22294 is high with a CVSS score of 8.8.
Tribe29 Checkmk Appliance before version 1.6.4 is affected by CVE-2023-22294.
Authenticated site users can exploit CVE-2023-22294 by escalating privileges via incorrectly set permissions.
Yes, a patch for CVE-2023-22294 is available in Checkmk version 1.6.4 and later.