CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
EPSS
Percentile
64.8%
Check_MK 1.2.2p2, 1.2.2p3, and 1.2.3i5 allows remote authenticated users to
execute arbitrary Python code via a crafted rules.mk file in a snapshot.
NOTE: this can be exploited by remote attackers by leveraging
CVE-2014-2330.