Lucene search
Tribe29CVELIST:CVE-2022-48321HistoryFeb 20, 2023 - 4:54 p.m.
CVE-2022-48321 SSRF in agent-receiver API
2023-02-2016:54:44
CWE-20
Tribe29
www.cve.org
2
ssrf
agent-receiver
checkmk
communication
local network
api
CVSS3
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS
0
Percentile
13.5%
Limited Server-Side Request Forgery (SSRF) in agent-receiver in Tribe29’s Checkmk <= 2.1.0p11 allows an attacker to communicate with local network restricted endpoints by use of the host registration API.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Checkmk",
"vendor": "Tribe29",
"versions": [
{
"lessThanOrEqual": "2.1.0p11",
"status": "affected",
"version": "2.1.0",
"versionType": "semver"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2022-48321
2023-02-20 00:00:00
nvd
nvd
CVE-2022-48321
2023-02-20 17:15:12
prion
prion
Server side request forgery (ssrf)
2023-02-20 17:15:00
osv
osv
CVE-2022-48321
2023-02-20 17:15:12
cve
cve
CVE-2022-48321
2023-02-20 17:15:12
openvas
openvas
Checkmk 2.1.x < 2.1.0p12, 2.2.x < 2.2.0b1 SSRF Vulnerability
2023-02-22 00:00:00
githubexploit
githubexploit
Exploit for Improper Input Validation in Checkmk
2023-03-27 02:16:51
CVSS3
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS
0
Percentile
13.5%
Related for CVELIST:CVE-2022-48321