cbcvebase.
CVE-2024-6747
published 2024-10-10

CVE-2024-6747: Information leakage in mknotifyd in Checkmk before 2.3.0p18, 2.2.0p36, 2.1.0p49 and in 2.0.0p39 (EOL) allows attacker to get potentially sensitive data

PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.37%
28.9th percentile
Information leakage in mknotifyd in Checkmk before 2.3.0p18, 2.2.0p36, 2.1.0p49 and in 2.0.0p39 (EOL) allows attacker to get potentially sensitive data

Affected

9 ranges
VendorProductVersion rangeFixed in
checkmkcheckmk
checkmkcheckmk
checkmkcheckmk
checkmkcheckmk>= 2.0.0 < 2.1.02.1.0
checkmk_gmbhcheckmk2.0.0 – 2.0.0p39
checkmk_gmbhcheckmk>= 2.1.0 < 2.1.0p492.1.0p49
checkmk_gmbhcheckmk>= 2.2.0 < 2.2.0p362.2.0p36
checkmk_gmbhcheckmk>= 2.3.0 < 2.3.0p182.3.0p18
mozillafirefox>= 0 < 125.0.3+build1-0ubuntu0.20.04.1125.0.3+build1-0ubuntu0.20.04.1

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.