CVE-2017-14955

MEDIUM

Checkmk - Information Disclosure

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-14955. PoCs published by Julien Ahrens.

AI-analyzed exploit summary The exploit demonstrates a race condition in Check_mk's authentication process, leading to an information disclosure vulnerability. By sending concurrent login requests with a valid username and invalid password, the script triggers a crash that exposes sensitive data such as hashed passwords and internal server paths.

Description

Check_MK before 1.2.8p26 mishandles certain errors within the failed-login save feature because of a race condition, which allows remote attackers to obtain sensitive user information by reading a GUI crash report.

Exploits (1)

exploitdb WORKING POC

by Julien Ahrens · pythonwebappspython

https://www.exploit-db.com/exploits/43021

View Code ZIP pw:eip

The exploit demonstrates a race condition in Check_mk's authentication process, leading to an information disclosure vulnerability. By sending concurrent login requests with a valid username and invalid password, the script triggers a crash that exposes sensitive data such as hashed passwords and internal server paths.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Racy

Target: Check_mk <= 1.2.8p25

No auth needed

Prerequisites: Network access to the target · Valid username

MITRE ATT&CK

T1083 - File and Directory Discovery T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43021/

Release Notes, Third Party Advisory x_refsource_confirm

http://mathias-kettner.com/check_mk_werks.php?edition_id=raw&branch=1.2.8

Third Party Advisory x_refsource_confirm

https://mathias-kettner.de/check_mk_werks.php?werk_id=5208&HTML=yes

Scores

CVSS v3 5.9

EPSS 0.1213

EPSS Percentile 95.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-200 CWE-362

Status published

Products (6)

checkmk/checkmk 1.2.3 i6 (2 CPE variants)

checkmk/checkmk 1.2.4 b1

checkmk/checkmk 1.2.5 i1 (6 CPE variants)

checkmk/checkmk 1.2.6 b1 (3 CPE variants)

checkmk/checkmk 1.2.7 i1 (5 CPE variants)

checkmk/checkmk 1.2.8 p18 (2 CPE variants)

Published Oct 02, 2017

Tracked Since Feb 18, 2026