CVE-2023-6735
EUVD-2023-5894812.01.2024, 08:15
Privilege escalation in mk_tsm agent plugin in Checkmk before 2.2.0p18, 2.1.0p38 and 2.0.0p39 allows local user to escalate privileges
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| checkmk | checkmk | 2.0.0:b1 |
| checkmk | checkmk | 2.0.0:b2 |
| checkmk | checkmk | 2.0.0:b3 |
| checkmk | checkmk | 2.0.0:b4 |
| checkmk | checkmk | 2.0.0:b5 |
| checkmk | checkmk | 2.0.0:b6 |
| checkmk | checkmk | 2.0.0:b7 |
| checkmk | checkmk | 2.0.0:b8 |
| checkmk | checkmk | 2.0.0:i1 |
| checkmk | checkmk | 2.0.0:p1 |
| checkmk | checkmk | 2.0.0:p10 |
| checkmk | checkmk | 2.0.0:p11 |
| checkmk | checkmk | 2.0.0:p12 |
| checkmk | checkmk | 2.0.0:p13 |
| checkmk | checkmk | 2.0.0:p14 |
| checkmk | checkmk | 2.0.0:p15 |
| checkmk | checkmk | 2.0.0:p16 |
| checkmk | checkmk | 2.0.0:p17 |
| checkmk | checkmk | 2.0.0:p18 |
| checkmk | checkmk | 2.0.0:p19 |
| checkmk | checkmk | 2.0.0:p2 |
| checkmk | checkmk | 2.0.0:p20 |
| checkmk | checkmk | 2.0.0:p21 |
| checkmk | checkmk | 2.0.0:p22 |
| checkmk | checkmk | 2.0.0:p23 |
| checkmk | checkmk | 2.0.0:p24 |
| checkmk | checkmk | 2.0.0:p25 |
| checkmk | checkmk | 2.0.0:p26 |
| checkmk | checkmk | 2.0.0:p27 |
| checkmk | checkmk | 2.0.0:p28 |
| checkmk | checkmk | 2.0.0:p29 |
| checkmk | checkmk | 2.0.0:p3 |
| checkmk | checkmk | 2.0.0:p30 |
| checkmk | checkmk | 2.0.0:p31 |
| checkmk | checkmk | 2.0.0:p32 |
| checkmk | checkmk | 2.0.0:p33 |
| checkmk | checkmk | 2.0.0:p34 |
| checkmk | checkmk | 2.0.0:p35 |
| checkmk | checkmk | 2.0.0:p36 |
| checkmk | checkmk | 2.0.0:p37 |
| checkmk | checkmk | 2.0.0:p38 |
| checkmk | checkmk | 2.0.0:p4 |
| checkmk | checkmk | 2.0.0:p5 |
| checkmk | checkmk | 2.0.0:p6 |
| checkmk | checkmk | 2.0.0:p7 |
| checkmk | checkmk | 2.0.0:p8 |
| checkmk | checkmk | 2.0.0:p9 |
| checkmk | checkmk | 2.1.0 |
| checkmk | checkmk | 2.1.0:b1 |
| checkmk | checkmk | 2.1.0:b2 |
| checkmk | checkmk | 2.1.0:b3 |
| checkmk | checkmk | 2.1.0:b4 |
| checkmk | checkmk | 2.1.0:b5 |
| checkmk | checkmk | 2.1.0:b6 |
| checkmk | checkmk | 2.1.0:b7 |
| checkmk | checkmk | 2.1.0:b8 |
| checkmk | checkmk | 2.1.0:b9 |
| checkmk | checkmk | 2.1.0:p1 |
| checkmk | checkmk | 2.1.0:p10 |
| checkmk | checkmk | 2.1.0:p11 |
| checkmk | checkmk | 2.1.0:p12 |
| checkmk | checkmk | 2.1.0:p13 |
| checkmk | checkmk | 2.1.0:p14 |
| checkmk | checkmk | 2.1.0:p15 |
| checkmk | checkmk | 2.1.0:p16 |
| checkmk | checkmk | 2.1.0:p17 |
| checkmk | checkmk | 2.1.0:p18 |
| checkmk | checkmk | 2.1.0:p19 |
| checkmk | checkmk | 2.1.0:p2 |
| checkmk | checkmk | 2.1.0:p20 |
| checkmk | checkmk | 2.1.0:p21 |
| checkmk | checkmk | 2.1.0:p22 |
| checkmk | checkmk | 2.1.0:p23 |
| checkmk | checkmk | 2.1.0:p24 |
| checkmk | checkmk | 2.1.0:p25 |
| checkmk | checkmk | 2.1.0:p26 |
| checkmk | checkmk | 2.1.0:p27 |
| checkmk | checkmk | 2.1.0:p28 |
| checkmk | checkmk | 2.1.0:p29 |
| checkmk | checkmk | 2.1.0:p3 |
| checkmk | checkmk | 2.1.0:p30 |
| checkmk | checkmk | 2.1.0:p31 |
| checkmk | checkmk | 2.1.0:p32 |
| checkmk | checkmk | 2.1.0:p33 |
| checkmk | checkmk | 2.1.0:p34 |
| checkmk | checkmk | 2.1.0:p35 |
| checkmk | checkmk | 2.1.0:p36 |
| checkmk | checkmk | 2.1.0:p37 |
| checkmk | checkmk | 2.1.0:p4 |
| checkmk | checkmk | 2.1.0:p5 |
| checkmk | checkmk | 2.1.0:p6 |
| checkmk | checkmk | 2.1.0:p7 |
| checkmk | checkmk | 2.1.0:p8 |
| checkmk | checkmk | 2.1.0:p9 |
| checkmk | checkmk | 2.2.0 |
| checkmk | checkmk | 2.2.0:b1 |
| checkmk | checkmk | 2.2.0:b2 |
| checkmk | checkmk | 2.2.0:b3 |
| checkmk | checkmk | 2.2.0:b4 |
| checkmk | checkmk | 2.2.0:b5 |
| checkmk | checkmk | 2.2.0:b6 |
| checkmk | checkmk | 2.2.0:b7 |
| checkmk | checkmk | 2.2.0:b8 |
| checkmk | checkmk | 2.2.0:i1 |
| checkmk | checkmk | 2.2.0:p1 |
| checkmk | checkmk | 2.2.0:p10 |
| checkmk | checkmk | 2.2.0:p11 |
| checkmk | checkmk | 2.2.0:p12 |
| checkmk | checkmk | 2.2.0:p13 |
| checkmk | checkmk | 2.2.0:p14 |
| checkmk | checkmk | 2.2.0:p15 |
| checkmk | checkmk | 2.2.0:p16 |
| checkmk | checkmk | 2.2.0:p17 |
| checkmk | checkmk | 2.2.0:p2 |
| checkmk | checkmk | 2.2.0:p3 |
| checkmk | checkmk | 2.2.0:p4 |
| checkmk | checkmk | 2.2.0:p5 |
| tribe29 | checkmk | 𝑥 ≤ 2.0.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
- CWE-95 - Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')The software receives input from an upstream component, but it does not neutralize or incorrectly neutralizes code syntax before using the input in a dynamic evaluation call (e.g. "eval").
- CWE-269 - Improper Privilege ManagementThe software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.