CVE-2024-1742
EUVD-2024-1746922.03.2024, 11:15
Invocation of the sqlplus command with sensitive information in the command line in the mk_oracle Checkmk agent plugin before Checkmk 2.3.0b4 (beta), 2.2.0p24, 2.1.0p41 and 2.0.0 (EOL) allows the extraction of this information from the process list.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| checkmk | checkmk | 𝑥 ≤ 2.0.0 |
| checkmk | checkmk | 2.1.0 |
| checkmk | checkmk | 2.1.0:b1 |
| checkmk | checkmk | 2.1.0:b2 |
| checkmk | checkmk | 2.1.0:b3 |
| checkmk | checkmk | 2.1.0:b4 |
| checkmk | checkmk | 2.1.0:b5 |
| checkmk | checkmk | 2.1.0:b6 |
| checkmk | checkmk | 2.1.0:b7 |
| checkmk | checkmk | 2.1.0:b8 |
| checkmk | checkmk | 2.1.0:b9 |
| checkmk | checkmk | 2.1.0:p1 |
| checkmk | checkmk | 2.1.0:p10 |
| checkmk | checkmk | 2.1.0:p11 |
| checkmk | checkmk | 2.1.0:p12 |
| checkmk | checkmk | 2.1.0:p13 |
| checkmk | checkmk | 2.1.0:p14 |
| checkmk | checkmk | 2.1.0:p15 |
| checkmk | checkmk | 2.1.0:p16 |
| checkmk | checkmk | 2.1.0:p17 |
| checkmk | checkmk | 2.1.0:p18 |
| checkmk | checkmk | 2.1.0:p19 |
| checkmk | checkmk | 2.1.0:p2 |
| checkmk | checkmk | 2.1.0:p20 |
| checkmk | checkmk | 2.1.0:p21 |
| checkmk | checkmk | 2.1.0:p22 |
| checkmk | checkmk | 2.1.0:p23 |
| checkmk | checkmk | 2.1.0:p24 |
| checkmk | checkmk | 2.1.0:p25 |
| checkmk | checkmk | 2.1.0:p26 |
| checkmk | checkmk | 2.1.0:p27 |
| checkmk | checkmk | 2.1.0:p28 |
| checkmk | checkmk | 2.1.0:p29 |
| checkmk | checkmk | 2.1.0:p3 |
| checkmk | checkmk | 2.1.0:p30 |
| checkmk | checkmk | 2.1.0:p31 |
| checkmk | checkmk | 2.1.0:p32 |
| checkmk | checkmk | 2.1.0:p33 |
| checkmk | checkmk | 2.1.0:p34 |
| checkmk | checkmk | 2.1.0:p35 |
| checkmk | checkmk | 2.1.0:p36 |
| checkmk | checkmk | 2.1.0:p37 |
| checkmk | checkmk | 2.1.0:p38 |
| checkmk | checkmk | 2.1.0:p39 |
| checkmk | checkmk | 2.1.0:p4 |
| checkmk | checkmk | 2.1.0:p40 |
| checkmk | checkmk | 2.1.0:p5 |
| checkmk | checkmk | 2.1.0:p6 |
| checkmk | checkmk | 2.1.0:p7 |
| checkmk | checkmk | 2.1.0:p8 |
| checkmk | checkmk | 2.1.0:p9 |
| checkmk | checkmk | 2.2.0 |
| checkmk | checkmk | 2.2.0:b1 |
| checkmk | checkmk | 2.2.0:b2 |
| checkmk | checkmk | 2.2.0:b3 |
| checkmk | checkmk | 2.2.0:b4 |
| checkmk | checkmk | 2.2.0:b5 |
| checkmk | checkmk | 2.2.0:b6 |
| checkmk | checkmk | 2.2.0:b7 |
| checkmk | checkmk | 2.2.0:b8 |
| checkmk | checkmk | 2.2.0:i1 |
| checkmk | checkmk | 2.2.0:p1 |
| checkmk | checkmk | 2.2.0:p10 |
| checkmk | checkmk | 2.2.0:p11 |
| checkmk | checkmk | 2.2.0:p12 |
| checkmk | checkmk | 2.2.0:p13 |
| checkmk | checkmk | 2.2.0:p14 |
| checkmk | checkmk | 2.2.0:p15 |
| checkmk | checkmk | 2.2.0:p16 |
| checkmk | checkmk | 2.2.0:p17 |
| checkmk | checkmk | 2.2.0:p18 |
| checkmk | checkmk | 2.2.0:p19 |
| checkmk | checkmk | 2.2.0:p2 |
| checkmk | checkmk | 2.2.0:p20 |
| checkmk | checkmk | 2.2.0:p21 |
| checkmk | checkmk | 2.2.0:p22 |
| checkmk | checkmk | 2.2.0:p23 |
| checkmk | checkmk | 2.2.0:p3 |
| checkmk | checkmk | 2.2.0:p4 |
| checkmk | checkmk | 2.2.0:p5 |
| checkmk | checkmk | 2.2.0:p6 |
| checkmk | checkmk | 2.2.0:p7 |
| checkmk | checkmk | 2.2.0:p8 |
| checkmk | checkmk | 2.2.0:p9 |
| checkmk | checkmk | 2.3.0:b1 |
| checkmk | checkmk | 2.3.0:b2 |
| checkmk | checkmk | 2.3.0:b3 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| checkmk | checkmk | 2.3.0 ≤ 𝑥 < 2.3.0b4 | ADP |
| checkmk | checkmk | 2.2.0 ≤ 𝑥 < 2.2.0p24 | ADP |
| checkmk | checkmk | 2.1.0 ≤ 𝑥 < 2.1.0p41 | ADP |
| checkmk | checkmk | 2.0.0 ≤ 𝑥 < 2.0.0p39 | ADP |
Common Weakness Enumeration