CVE-2014-2332

Check_MK before 1.2.2p3 and 1.2.3x before 1.2.3i5 allows remote authenticated users to delete arbitrary files via a request to an unspecified link, related to "Insecure Direct Object References." NOTE: this can be exploited by remote attackers by leveraging CVE-2014-2330.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:check_mk_project:check_mk:*:*:*:*:*:*:*:*
cpe:2.3:a:check_mk_project:check_mk:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-08-31 18:59

Updated : 2024-02-04 18:53


NVD link : CVE-2014-2332

Mitre link : CVE-2014-2332

CVE.ORG link : CVE-2014-2332


JSON object : View

Products Affected

check_mk_project

  • check_mk
CWE
CWE-20

Improper Input Validation