CVE-2014-5339

Medium

4.9/10

Summary

Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated users to write check_mk config files (.mk files) to arbitrary locations via vectors related to row selections.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: SINGLE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: PARTIAL

References

Advisory Timeline

Published Sep 02, 2014

CVE-2014-5339

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS