First published: Tue Apr 18 2023(Updated: )
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local attacker to retrieve passwords via reading log files.
Credit: security@checkmk.com
Affected Software | Affected Version | How to fix |
---|---|---|
Tribe29 Checkmk Appliance Firmware | <1.6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this sensitive data exposure is CVE-2023-22307.
The affected software version for this vulnerability is Checkmk Appliance Firmware before 1.6.4.
The severity rating of this vulnerability is medium, with a score of 5.5.
A local attacker can exploit this vulnerability by reading log files to retrieve passwords.
Yes, a fix is available for this vulnerability in Checkmk Appliance Firmware version 1.6.4.