Lucene search
GoogleOSV:CVE-2023-6251HistoryNov 24, 2023 - 9:15 a.m.
CVE-2023-6251
2023-11-2409:15:09
Google
osv.dev
5
cross-site request forgery
csrf
checkmk
user-messages
software
security vulnerability
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
14.0%
Cross-site Request Forgery (CSRF) in Checkmk < 2.2.0p15, < 2.1.0p37, <= 2.0.0p39 allow an authenticated attacker to delete user-messages for individual users.
References
Related
cvelist
cvelist
CVE-2023-6251 CSRF in delete_user_message
2023-11-24 08:16:23
ubuntucve
ubuntucve
CVE-2023-6251
2023-11-24 00:00:00
nvd
nvd
CVE-2023-6251
2023-11-24 09:15:09
prion
prion
Cross site request forgery (csrf)
2023-11-24 09:15:00
cve
cve
CVE-2023-6251
2023-11-24 09:15:09
openvas
openvas
Checkmk 2.0.x < 2.1.0p37, 2.2.x < 2.2.0p15 Multiple Vulnerabilities
2023-11-17 00:00:00
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
14.0%
Related for OSV:CVE-2023-6251