CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-24565

Checkmk <=2.0.0p19 Fixed in 2.0.0p20 and Checkmk <=1.6.0p27 Fixed in 1.6.0p28 are affected by a Cross Site Scripting (XSS) vulnerability. The Alias of a site was not properly escaped when shown as condition for notifications.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.0%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://checkmk.com/werk/13716
https://checkmk.com/werk/13716

Products affected by CVE-2022-24565

Checkmk » Checkmk » Version: 1.6.0

cpe:2.3:a:checkmk:checkmk:1.6.0
Checkmk » Checkmk » Version: 2.0.0

cpe:2.3:a:checkmk:checkmk:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-24565

Products

Pricing

Contact Us