What is the severity of CVE-2023-31211?

CVE-2023-31211 has been rated as critical due to the potential for attackers to exploit locked credentials.

How do I fix CVE-2023-31211?

To fix CVE-2023-31211, upgrade to Checkmk versions 2.2.0p18, 2.1.0p38, or 2.0.0p39 or later.

What are the affected versions of Checkmk for CVE-2023-31211?

CVE-2023-31211 affects Checkmk versions prior to 2.2.0p18, 2.1.0p38, and 2.0.0p39.

What kind of attack can be performed using CVE-2023-31211?

An attacker can exploit CVE-2023-31211 to gain unauthorized access using locked user credentials.

Who is affected by CVE-2023-31211?

Any organizations using vulnerable versions of Checkmk prior to the patched releases are at risk of CVE-2023-31211.

Vulnerability/
CVE-2023-31211

high

8.8

CWE

303 670

12/1/2024

26/8/2024

CVE-2023-31211: Disabled automation users could still authenticate

First published: Fri Jan 12 2024(Updated: )

Insufficient authentication flow in Checkmk before 2.2.0p18, 2.1.0p38 and 2.0.0p39 allows attacker to use locked credentials

Credit: security@checkmk.com

Affected Software	Affected Version	How to fix
Checkmk NagVis	=2.0.0-b1
Checkmk NagVis	=2.0.0-b2
Checkmk NagVis	=2.0.0-b3
Checkmk NagVis	=2.0.0-b4
Checkmk NagVis	=2.0.0-b5
Checkmk NagVis	=2.0.0-b6
Checkmk NagVis	=2.0.0-b7
Checkmk NagVis	=2.0.0-b8
Checkmk NagVis	=2.0.0-i1
Checkmk NagVis	=2.0.0-p1
Checkmk NagVis	=2.0.0-p10
Checkmk NagVis	=2.0.0-p11
Checkmk NagVis	=2.0.0-p12
Checkmk NagVis	=2.0.0-p13
Checkmk NagVis	=2.0.0-p14
Checkmk NagVis	=2.0.0-p15
Checkmk NagVis	=2.0.0-p16
Checkmk NagVis	=2.0.0-p17
Checkmk NagVis	=2.0.0-p18
Checkmk NagVis	=2.0.0-p19
Checkmk NagVis	=2.0.0-p2
Checkmk NagVis	=2.0.0-p20
Checkmk NagVis	=2.0.0-p21
Checkmk NagVis	=2.0.0-p22
Checkmk NagVis	=2.0.0-p23
Checkmk NagVis	=2.0.0-p24
Checkmk NagVis	=2.0.0-p25
Checkmk NagVis	=2.0.0-p26
Checkmk NagVis	=2.0.0-p27
Checkmk NagVis	=2.0.0-p28
Checkmk NagVis	=2.0.0-p29
Checkmk NagVis	=2.0.0-p3
Checkmk NagVis	=2.0.0-p30
Checkmk NagVis	=2.0.0-p31
Checkmk NagVis	=2.0.0-p32
Checkmk NagVis	=2.0.0-p33
Checkmk NagVis	=2.0.0-p34
Checkmk NagVis	=2.0.0-p35
Checkmk NagVis	=2.0.0-p36
Checkmk NagVis	=2.0.0-p37
Checkmk NagVis	=2.0.0-p38
Checkmk NagVis	=2.0.0-p4
Checkmk NagVis	=2.0.0-p5
Checkmk NagVis	=2.0.0-p6
Checkmk NagVis	=2.0.0-p7
Checkmk NagVis	=2.0.0-p8
Checkmk NagVis	=2.0.0-p9
Checkmk NagVis	=2.1.0
Checkmk NagVis	=2.1.0-b1
Checkmk NagVis	=2.1.0-b2
Checkmk NagVis	=2.1.0-b3
Checkmk NagVis	=2.1.0-b4
Checkmk NagVis	=2.1.0-b5
Checkmk NagVis	=2.1.0-b6
Checkmk NagVis	=2.1.0-b7
Checkmk NagVis	=2.1.0-b8
Checkmk NagVis	=2.1.0-b9
Checkmk NagVis	=2.1.0-p1
Checkmk NagVis	=2.1.0-p10
Checkmk NagVis	=2.1.0-p11
Checkmk NagVis	=2.1.0-p12
Checkmk NagVis	=2.1.0-p13
Checkmk NagVis	=2.1.0-p14
Checkmk NagVis	=2.1.0-p15
Checkmk NagVis	=2.1.0-p16
Checkmk NagVis	=2.1.0-p17
Checkmk NagVis	=2.1.0-p18
Checkmk NagVis	=2.1.0-p19
Checkmk NagVis	=2.1.0-p2
Checkmk NagVis	=2.1.0-p20
Checkmk NagVis	=2.1.0-p21
Checkmk NagVis	=2.1.0-p22
Checkmk NagVis	=2.1.0-p23
Checkmk NagVis	=2.1.0-p24
Checkmk NagVis	=2.1.0-p25
Checkmk NagVis	=2.1.0-p26
Checkmk NagVis	=2.1.0-p27
Checkmk NagVis	=2.1.0-p28
Checkmk NagVis	=2.1.0-p29
Checkmk NagVis	=2.1.0-p3
Checkmk NagVis	=2.1.0-p30
Checkmk NagVis	=2.1.0-p31
Checkmk NagVis	=2.1.0-p32
Checkmk NagVis	=2.1.0-p33
Checkmk NagVis	=2.1.0-p34
Checkmk NagVis	=2.1.0-p35
Checkmk NagVis	=2.1.0-p36
Checkmk NagVis	=2.1.0-p37
Checkmk NagVis	=2.1.0-p4
Checkmk NagVis	=2.1.0-p5
Checkmk NagVis	=2.1.0-p6
Checkmk NagVis	=2.1.0-p7
Checkmk NagVis	=2.1.0-p8
Checkmk NagVis	=2.1.0-p9
Checkmk NagVis	=2.2.0
Checkmk NagVis	=2.2.0-b1
Checkmk NagVis	=2.2.0-b2
Checkmk NagVis	=2.2.0-b3
Checkmk NagVis	=2.2.0-b4
Checkmk NagVis	=2.2.0-b5
Checkmk NagVis	=2.2.0-b6
Checkmk NagVis	=2.2.0-b7
Checkmk NagVis	=2.2.0-b8
Checkmk NagVis	=2.2.0-i1
Checkmk NagVis	=2.2.0-p1
Checkmk NagVis	=2.2.0-p10
Checkmk NagVis	=2.2.0-p11
Checkmk NagVis	=2.2.0-p12
Checkmk NagVis	=2.2.0-p13
Checkmk NagVis	=2.2.0-p14
Checkmk NagVis	=2.2.0-p15
Checkmk NagVis	=2.2.0-p16
Checkmk NagVis	=2.2.0-p17
Checkmk NagVis	=2.2.0-p2
Checkmk NagVis	=2.2.0-p3
Checkmk NagVis	=2.2.0-p4
Checkmk NagVis	=2.2.0-p5
Checkmk NagVis	<=2.0.0

Remedy

https://checkmk.com/werk/16227

Never miss a vulnerability like this again

Reference Links

https://checkmk.com/werk/16227

Frequently Asked Questions

What is the severity of CVE-2023-31211?
CVE-2023-31211 has been rated as critical due to the potential for attackers to exploit locked credentials.
How do I fix CVE-2023-31211?
To fix CVE-2023-31211, upgrade to Checkmk versions 2.2.0p18, 2.1.0p38, or 2.0.0p39 or later.
What are the affected versions of Checkmk for CVE-2023-31211?
CVE-2023-31211 affects Checkmk versions prior to 2.2.0p18, 2.1.0p38, and 2.0.0p39.
What kind of attack can be performed using CVE-2023-31211?
An attacker can exploit CVE-2023-31211 to gain unauthorized access using locked user credentials.
Who is affected by CVE-2023-31211?
Any organizations using vulnerable versions of Checkmk prior to the patched releases are at risk of CVE-2023-31211.

agent/author
agent/title
agent/references
agent/type
agent/first-publish-date
agent/remedy
agent/description
agent/event
agent/severity
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/checkmk
canonical/checkmk nagvis
version/checkmk nagvis/2.0.0-b1
version/checkmk nagvis/2.0.0-b2
version/checkmk nagvis/2.0.0-b3
version/checkmk nagvis/2.0.0-b4
version/checkmk nagvis/2.0.0-b5
version/checkmk nagvis/2.0.0-b6
version/checkmk nagvis/2.0.0-b7
version/checkmk nagvis/2.0.0-b8
version/checkmk nagvis/2.0.0-i1
version/checkmk nagvis/2.0.0-p1
version/checkmk nagvis/2.0.0-p10
version/checkmk nagvis/2.0.0-p11
version/checkmk nagvis/2.0.0-p12
version/checkmk nagvis/2.0.0-p13
version/checkmk nagvis/2.0.0-p14
version/checkmk nagvis/2.0.0-p15
version/checkmk nagvis/2.0.0-p16
version/checkmk nagvis/2.0.0-p17
version/checkmk nagvis/2.0.0-p18
version/checkmk nagvis/2.0.0-p19
version/checkmk nagvis/2.0.0-p2
version/checkmk nagvis/2.0.0-p20
version/checkmk nagvis/2.0.0-p21
version/checkmk nagvis/2.0.0-p22
version/checkmk nagvis/2.0.0-p23
version/checkmk nagvis/2.0.0-p24
version/checkmk nagvis/2.0.0-p25
version/checkmk nagvis/2.0.0-p26
version/checkmk nagvis/2.0.0-p27
version/checkmk nagvis/2.0.0-p28
version/checkmk nagvis/2.0.0-p29
version/checkmk nagvis/2.0.0-p3
version/checkmk nagvis/2.0.0-p30
version/checkmk nagvis/2.0.0-p31
version/checkmk nagvis/2.0.0-p32
version/checkmk nagvis/2.0.0-p33
version/checkmk nagvis/2.0.0-p34
version/checkmk nagvis/2.0.0-p35
version/checkmk nagvis/2.0.0-p36
version/checkmk nagvis/2.0.0-p37
version/checkmk nagvis/2.0.0-p38
version/checkmk nagvis/2.0.0-p4
version/checkmk nagvis/2.0.0-p5
version/checkmk nagvis/2.0.0-p6
version/checkmk nagvis/2.0.0-p7
version/checkmk nagvis/2.0.0-p8
version/checkmk nagvis/2.0.0-p9
version/checkmk nagvis/2.1.0
version/checkmk nagvis/2.1.0-b1
version/checkmk nagvis/2.1.0-b2
version/checkmk nagvis/2.1.0-b3
version/checkmk nagvis/2.1.0-b4
version/checkmk nagvis/2.1.0-b5
version/checkmk nagvis/2.1.0-b6
version/checkmk nagvis/2.1.0-b7
version/checkmk nagvis/2.1.0-b8
version/checkmk nagvis/2.1.0-b9
version/checkmk nagvis/2.1.0-p1
version/checkmk nagvis/2.1.0-p10
version/checkmk nagvis/2.1.0-p11
version/checkmk nagvis/2.1.0-p12
version/checkmk nagvis/2.1.0-p13
version/checkmk nagvis/2.1.0-p14
version/checkmk nagvis/2.1.0-p15
version/checkmk nagvis/2.1.0-p16
version/checkmk nagvis/2.1.0-p17
version/checkmk nagvis/2.1.0-p18
version/checkmk nagvis/2.1.0-p19
version/checkmk nagvis/2.1.0-p2
version/checkmk nagvis/2.1.0-p20
version/checkmk nagvis/2.1.0-p21
version/checkmk nagvis/2.1.0-p22
version/checkmk nagvis/2.1.0-p23
version/checkmk nagvis/2.1.0-p24
version/checkmk nagvis/2.1.0-p25
version/checkmk nagvis/2.1.0-p26
version/checkmk nagvis/2.1.0-p27
version/checkmk nagvis/2.1.0-p28
version/checkmk nagvis/2.1.0-p29
version/checkmk nagvis/2.1.0-p3
version/checkmk nagvis/2.1.0-p30
version/checkmk nagvis/2.1.0-p31
version/checkmk nagvis/2.1.0-p32
version/checkmk nagvis/2.1.0-p33
version/checkmk nagvis/2.1.0-p34
version/checkmk nagvis/2.1.0-p35
version/checkmk nagvis/2.1.0-p36
version/checkmk nagvis/2.1.0-p37
version/checkmk nagvis/2.1.0-p4
version/checkmk nagvis/2.1.0-p5
version/checkmk nagvis/2.1.0-p6
version/checkmk nagvis/2.1.0-p7
version/checkmk nagvis/2.1.0-p8
version/checkmk nagvis/2.1.0-p9
version/checkmk nagvis/2.2.0
version/checkmk nagvis/2.2.0-b1
version/checkmk nagvis/2.2.0-b2
version/checkmk nagvis/2.2.0-b3
version/checkmk nagvis/2.2.0-b4
version/checkmk nagvis/2.2.0-b5
version/checkmk nagvis/2.2.0-b6
version/checkmk nagvis/2.2.0-b7
version/checkmk nagvis/2.2.0-b8
version/checkmk nagvis/2.2.0-i1
version/checkmk nagvis/2.2.0-p1
version/checkmk nagvis/2.2.0-p10
version/checkmk nagvis/2.2.0-p11
version/checkmk nagvis/2.2.0-p12
version/checkmk nagvis/2.2.0-p13
version/checkmk nagvis/2.2.0-p14
version/checkmk nagvis/2.2.0-p15
version/checkmk nagvis/2.2.0-p16
version/checkmk nagvis/2.2.0-p17
version/checkmk nagvis/2.2.0-p2
version/checkmk nagvis/2.2.0-p3
version/checkmk nagvis/2.2.0-p4
version/checkmk nagvis/2.2.0-p5
vendor/tribe29
version/checkmk nagvis/2.0.0