mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-29 01:31:20 +00:00
49 lines
1.5 KiB
JSON
49 lines
1.5 KiB
JSON
{
|
|
"id": "CVE-2024-13723",
|
|
"sourceIdentifier": "bbf0bd87-ece2-41be-b873-96928ee8fab9",
|
|
"published": "2025-02-04T22:15:40.227",
|
|
"lastModified": "2025-02-05T01:15:08.440",
|
|
"vulnStatus": "Received",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "The \"NagVis\" component within Checkmk is vulnerable to remote code execution. An authenticated attacker with administrative level privileges is able to upload a malicious PHP file and modify specific settings to execute the contents of the file as PHP."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"weaknesses": [
|
|
{
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9",
|
|
"type": "Secondary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-434"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://checkmk.com/werks?version=2.3.0p10",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "https://korelogic.com/Resources/Advisories/KL-001-2025-002.txt",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "https://www.nagvis.org/downloads/changelog/1.9.42",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "http://seclists.org/fulldisclosure/2025/Feb/4",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2025/02/04/4",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
}
|
|
]
|
|
} |