Home
LOW: 1.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:NDefault status
unaffected
2.4.0 (semver) before 2.4.0p13
affected
2.3.0 (semver) before 2.3.0p38
affected
2.2.0 (semver) before 2.2.0p46
affected
2.1.0 (semver)
affected
Description
Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4.0p13, <2.3.0p38, <2.2.0p46, and 2.1.0 (EOL) may cause sensitive form data to be included in URL query parameters, which may be logged in various places such as browser history or web server logs.
Problem types
CWE-598: Use of GET Request Method With Sensitive Query Strings
Product status
2.4.0 (semver) before 2.4.0p13
2.3.0 (semver) before 2.3.0p38
2.2.0 (semver) before 2.2.0p46
2.1.0 (semver)
