Known Vulnerabilities for products from Tribe29
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Tribe29".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-31211 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2024-01-12 | 2024-01-19 |
| CVE-2023-31210 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2023-12-13 | 2023-12-18 |
| CVE-2023-31209 json | Improper neutralization of active check command arguments in Checkmk < 2.1.0p32, < 2.0.0p38, < 2.2.0p4 leads to arbitrary com... | 8.8 - HIGH | 2023-08-10 | 2023-08-17 |
| CVE-2023-31208 json | Improper neutralization of livestatus command delimiters in the RestAPI in Checkmk < 2.0.0p36, < 2.1.0p28, and < 2.2.0b8 (bet... | 8.8 - HIGH | 2023-05-17 | 2023-05-26 |
| CVE-2023-31207 json | Transmission of credentials within query parameters in Checkmk <= 2.1.0p26, <= 2.0.0p35, and <= 2.2.0b6 (beta) may cause the ... | 5.5 - MEDIUM | 2023-05-02 | 2023-05-09 |
| CVE-2023-23549 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 2.7 - LOW | 2023-11-15 | 2023-11-21 |
| CVE-2023-23548 json | Reflected XSS in business intelligence in Checkmk <2.2.0p8, <2.1.0p32, <2.0.0p38, <=1.6.0p30. | 6.1 - MEDIUM | 2023-08-01 | 2023-08-04 |
| CVE-2023-22359 json | User enumeration in Checkmk <=2.2.0p4 allows an authenticated attacker to enumerate usernames. | 4.3 - MEDIUM | 2023-06-26 | 2023-07-03 |
| CVE-2023-22348 json | Improper Authorization in RestAPI in Checkmk GmbH's Checkmk versions <2.1.0p28 and <2.2.0b8 allows remote authenticated users... | 4.3 - MEDIUM | 2023-05-17 | 2023-05-25 |
| CVE-2023-22318 json | Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5. | 7.5 - HIGH | 2023-05-15 | 2023-05-25 |
| CVE-2023-22309 json | Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4. | 6.1 - MEDIUM | 2023-04-20 | 2023-04-28 |
| CVE-2023-22307 json | Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local attacker to retrieve passwords via ... | 5.5 - MEDIUM | 2023-04-18 | 2023-04-27 |
| CVE-2023-22294 json | Privilege escalation in Tribe29 Checkmk Appliance before 1.6.4 allows authenticated site users to escalate privileges via inc... | 8.8 - HIGH | 2023-04-18 | 2023-04-27 |
| CVE-2023-22288 json | HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated att... | 5.4 - MEDIUM | 2023-03-20 | 2023-03-23 |
| CVE-2023-6287 json | HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated att... | 5.5 - MEDIUM | 2023-11-27 | 2023-12-01 |
| CVE-2023-6251 json | HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated att... | 3.5 - LOW | 2023-11-24 | 2023-11-30 |
| CVE-2023-6157 json | HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated att... | 8.8 - HIGH | 2023-11-22 | 2023-11-30 |
| CVE-2023-6156 json | HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated att... | 8.8 - HIGH | 2023-11-22 | 2023-11-30 |
| CVE-2023-2020 json | Insufficient permission checks in the REST API in Tribe29 Checkmk <= 2.1.0p27 and <= 2.2.0b4 (beta) allow unauthorized users ... | 4.3 - MEDIUM | 2023-04-18 | 2023-04-27 |
| CVE-2023-1768 json | Inappropriate error handling in Tribe29 Checkmk <= 2.1.0p25, <= 2.0.0p34, <= 2.2.0b3 (beta), and all versions of Checkmk 1.6.... | 5.3 - MEDIUM | 2023-04-04 | 2023-04-11 |
Known software with vulnerabilities from Tribe29
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Tribe29 | Checkmk | 1.2.3 |