Showing 1 - 2 of 2

CVE-2017-14955

Status Candidate

Overview

Check_MK before 1.2.8p26 mishandles certain errors within the failed-login save feature because of a race condition, which allows remote attackers to obtain sensitive user information by reading a GUI crash report.

Related Files

Ubuntu Security Notice USN-5527-1: Posted Jul 20, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5527-1 - It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to information disclosure. It was discovered that Checkmk incorrectly handled certain inputs. An attacker could use these cross-site scripting issues to inject arbitrary html or javascript code to obtain sensitive information including user information, session cookies and valid credentials.; tags | advisory, arbitrary, javascript, xss, info disclosure; systems | linux, ubuntu; advisories | CVE-2017-14955, CVE-2021-40906, CVE-2022-24565; SHA-256 | 45daf753e998edd792b4728e6f35f35c6493b1e6cc974ee1082da7f33c59b2dc; Download | Favorite | View

Check_mk 1.2.8p25 save_users() Race Condition: Posted Oct 19, 2017; Authored by Julien Ahrens | Site rcesecurity.com; Check_mk versions 1.2.8p25 and below suffer from a save_users() race condition that leads to sensitive information disclosure.; tags | exploit, info disclosure; advisories | CVE-2017-14955; SHA-256 | 3817f4097ba3c193b240667f3e9f94890b3c36bbafc096a89f647938a535aa59; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 217 files
Ubuntu 101 files
Debian 23 files
Gentoo 23 files
tmrswrr 8 files
Amit Roy 4 files
Google Security Research 3 files
Furkan Eren Tetik 3 files
Aslam Anwar Mahimkar 3 files
ron190 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,074)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,523)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,242)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,193)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,636)
UNIX (9,424)
UnixWare (187)
Windows (6,665)
Other

CVE-2017-14955

Overview

Related Files

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems