Improper restriction of excessive authentication attempts with two factor authentication methods in Checkmk 2.3 before 2.3.0p6 facilitates brute-forcing of second factor mechanisms.
References
Link | Resource |
---|---|
https://checkmk.com/werk/16830 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
12 Jun 2024, 17:53
Type | Values Removed | Values Added |
---|---|---|
References | () https://checkmk.com/werk/16830 - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CPE | cpe:2.3:a:tribe29:checkmk:2.3.0:p4:*:*:*:*:*:* cpe:2.3:a:tribe29:checkmk:2.3.0:p1:*:*:*:*:*:* cpe:2.3:a:tribe29:checkmk:2.3.0:p5:*:*:*:*:*:* cpe:2.3:a:tribe29:checkmk:2.3.0:p2:*:*:*:*:*:* cpe:2.3:a:tribe29:checkmk:2.3.0:p3:*:*:*:*:*:* |
|
Summary |
|
|
First Time |
Tribe29 checkmk
Tribe29 |
10 Jun 2024, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-10 12:15
Updated : 2024-06-12 17:53
NVD link : CVE-2024-28833
Mitre link : CVE-2024-28833
CVE.ORG link : CVE-2024-28833
JSON object : View
Products Affected
tribe29
- checkmk
CWE
CWE-307
Improper Restriction of Excessive Authentication Attempts