VYPR
Unrated severityNVD Advisory· Published Feb 23, 2022· Updated Aug 3, 2024

CVE-2022-24566

CVE-2022-24566

Description

In Checkmk <=2.0.0p19 fixed in 2.0.0p20 and Checkmk <=1.6.0p27 fixed in 1.6.0p28, the title of a Predefined condition is not properly escaped when shown as condition, which can result in Cross Site Scripting (XSS).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Checkmk/Checkmkcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=2.0.0p19 / <=1.6.0p27

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.