First published: Thu Apr 20 2023(Updated: )
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4.
Credit: security@checkmk.com
Affected Software | Affected Version | How to fix |
---|---|---|
Tribe29 Checkmk Appliance Firmware | <1.6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-22309 is a vulnerability in the Webconf component of Tribe29 Checkmk Appliance before version 1.6.4 that allows for Reflective Cross-Site Scripting (XSS) attacks.
The severity of CVE-2023-22309 is rated as medium with a CVSS score of 6.1.
CVE-2023-22309 affects Tribe29 Checkmk Appliance versions before 1.6.4, specifically the Webconf component, allowing for Reflective Cross-Site Scripting (XSS) attacks.
To fix CVE-2023-22309, you should update your Tribe29 Checkmk Appliance firmware to version 1.6.4 or a higher version.
Reflective Cross-Site Scripting (XSS) is a type of security vulnerability that allows an attacker to inject malicious scripts into web pages viewed by other users.