Vulnerability Details CVE-2024-38858
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 75.0%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2024-38858
-
cpe:2.3:a:checkmk:checkmk:1.2.3
-
cpe:2.3:a:checkmk:checkmk:1.2.4
-
cpe:2.3:a:checkmk:checkmk:1.2.5
-
cpe:2.3:a:checkmk:checkmk:1.2.6
-
cpe:2.3:a:checkmk:checkmk:1.2.7
-
cpe:2.3:a:checkmk:checkmk:1.2.8
-
cpe:2.3:a:checkmk:checkmk:1.4.0
-
cpe:2.3:a:checkmk:checkmk:1.5.0
-
cpe:2.3:a:checkmk:checkmk:1.6.0
-
cpe:2.3:a:checkmk:checkmk:1.6.4
-
cpe:2.3:a:checkmk:checkmk:2.0.0
-
cpe:2.3:a:checkmk:checkmk:2.1.0
-
cpe:2.3:a:checkmk:checkmk:2.2.0
-
cpe:2.3:a:checkmk:checkmk:2.3.0