CVE-2023-31210
HIGHCheckmk <2.2.0p16 - Privilege Escalation
Title source: llmDescription
Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries
References (1)
Scores
CVSS v3
8.8
EPSS
0.0012
EPSS Percentile
31.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-427
Status
published
Affected Products (7)
checkmk/checkmk
checkmk/checkmk
checkmk/checkmk
checkmk/checkmk
checkmk/checkmk
checkmk/checkmk
checkmk/checkmk
Timeline
Published
Dec 13, 2023
Tracked Since
Feb 18, 2026