VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 2, 2014· Updated May 6, 2026

CVE-2014-5339

CVE-2014-5339

Description

Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated users to write check_mk config files (.mk files) to arbitrary locations via vectors related to row selections.

Affected products

7
  • Check Mk Project/Check Mk7 versions
    cpe:2.3:a:check_mk_project:check_mk:*:p3:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:check_mk_project:check_mk:*:p3:*:*:*:*:*:*range: <=1.2.4
    • cpe:2.3:a:check_mk_project:check_mk:1.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:check_mk_project:check_mk:1.2.4:p1:*:*:*:*:*:*
    • cpe:2.3:a:check_mk_project:check_mk:1.2.4:p2:*:*:*:*:*:*
    • cpe:2.3:a:check_mk_project:check_mk:1.2.5:i1:*:*:*:*:*:*
    • cpe:2.3:a:check_mk_project:check_mk:1.2.5:i2:*:*:*:*:*:*
    • cpe:2.3:a:check_mk_project:check_mk:1.2.5:i3:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.