CVE-2024-38857

Improper neutralization of input in Checkmk before versions 2.3.0p8, 2.2.0p28, 2.1.0p45, and 2.0.0 (EOL) allows attackers to craft malicious links that can facilitate phishing attacks.
Configurations

No configuration.

History

21 Nov 2024, 09:26

Type Values Removed Values Added
References () https://checkmk.com/werk/17059 - () https://checkmk.com/werk/17059 -

02 Jul 2024, 12:09

Type Values Removed Values Added
Summary
  • (es) La neutralización inadecuada de la entrada en Checkmk antes de las versiones 2.3.0p8, 2.2.0p28, 2.1.0p45 y 2.0.0 (EOL) permite a los atacantes crear enlaces maliciosos que pueden facilitar los ataques de phishing.

02 Jul 2024, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-02 08:15

Updated : 2024-11-21 09:26


NVD link : CVE-2024-38857

Mitre link : CVE-2024-38857

CVE.ORG link : CVE-2024-38857


JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')