CVE-2023-22359
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Jun 26, 2023
Updated: Jul 23, 2024
CWE ID 203
Summary
CVE-2023-22359 is a vulnerability affecting Checkmk versions up to 2.2.0p4. An authenticated attacker can exploit this user enumeration flaw to enumerate usernames within the targeted system. This information disclosure can potentially aid an attacker in further exploitation attempts or social engineering attacks. The vulnerability provides an attacker with valuable insight into the user base of the affected system. It is crucial for administrators to update their Checkmk installations to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Checkmk
Affected Vendors
- Check MK