Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-64999

Опубликовано: 26 фев. 2026
Источник: ubuntu
Приоритет: medium
CVSS3: 5.4

Описание

Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p43 allows an attacker that can manipulate a host's check output to inject malicious JavaScript into the Synthetic Monitoring HTML logs, which can then be accessed via a crafted phishing link.

РелизСтатусПримечание
devel

DNE

esm-apps/bionic

needs-triage

esm-apps/xenial

needs-triage

jammy

DNE

noble

DNE

questing

DNE

upstream

needs-triage

Показывать по

Ссылки на источники

5.4 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-64999

CVSS3: 5.4
nvd
около 2 месяцев назад

Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p43 allows an attacker that can manipulate a host's check output to inject malicious JavaScript into the Synthetic Monitoring HTML logs, which can then be accessed via a crafted phishing link.

debian логотип

CVE-2025-64999

CVSS3: 5.4
debian
около 2 месяцев назад

Improper neutralization of input in Checkmk versions 2.4.0 before 2.4. ...

github логотип

GHSA-p5q4-qc3r-2w36

CVSS3: 5.4
github
около 2 месяцев назад

Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p43 allows an attacker that can manipulate a host's check output to inject malicious JavaScript into the Synthetic Monitoring HTML logs, which can then be accessed via a crafted phishing link.

5.4 Medium

CVSS3