Known Vulnerabilities for products from Check Mk Project
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Check Mk Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33680 | Not Provided | 2026-03-24 | 2026-03-26 | |
| CVE-2026-33678 | Not Provided | 2026-03-24 | 2026-03-24 | |
| CVE-2017-11507 | A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.2.8x prior to 1.2.8p25 and 1.4.0x prior to 1.4.0p9, ... | 6.1 - MEDIUM | 2017-12-11 | 2017-12-26 |
| CVE-2017-9781 | A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.4.0x prior to 1.4.0p6, allowing an unauthenticated r... | 6.1 - MEDIUM | 2017-06-21 | 2023-11-07 |
| CVE-2014-5340 | The wato component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 uses the pickle Python module unsafely, which allows r... | 9.3 - HIGH | 2014-09-02 | 2018-10-09 |
| CVE-2014-5339 | Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated users to write check_mk config files (.mk files)... | 4.9 - MEDIUM | 2014-09-02 | 2018-10-09 |
| CVE-2014-5338 | Multiple cross-site scripting (XSS) vulnerabilities in the multisite component in Check_MK before 1.2.4p4 and 1.2.5 before 1.... | 3.5 - LOW | 2014-08-22 | 2018-10-09 |
| CVE-2014-2332 | Check_MK before 1.2.2p3 and 1.2.3x before 1.2.3i5 allows remote authenticated users to delete arbitrary files via a request t... | 5.5 - MEDIUM | 2015-08-31 | 2015-09-01 |
| CVE-2014-2331 | Check_MK 1.2.2p2, 1.2.2p3, and 1.2.3i5 allows remote authenticated users to execute arbitrary Python code via a crafted rules... | 8.5 - HIGH | 2015-08-31 | 2015-09-01 |
| CVE-2014-2330 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Multisite GUI in Check_MK before 1.2.5i2 allow remote attac... | 6.8 - MEDIUM | 2015-08-31 | 2015-09-01 |
| CVE-2014-2329 | Multiple cross-site scripting (XSS) vulnerabilities in Check_MK before 1.2.2p3 and 1.2.3x before 1.2.3i5 allow remote authent... | 3.5 - LOW | 2015-08-31 | 2015-09-01 |
| CVE-2014-0243 | Check_MK through 1.2.5i2p1 allows local users to read arbitrary files via a symlink attack to a file in /var/lib/check_mk_age... | 5.5 - MEDIUM | 2018-07-19 | 2023-11-07 |
Known software with vulnerabilities from Check Mk Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Check Mk Project | Check Mk | 1.1.0 |