CVE-2023-1768 - Vulnerability Details

Inappropriate error handling in Tribe29 Checkmk <= 2.1.0p25, <= 2.0.0p34, <= 2.2.0b3 (beta), and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00217.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Tribe29

Checkmk

unaffected

Version	Status	Constraints
`2.2.0`	affected	≤ 2.2.0b3
`2.1.0`	affected	≤ 2.1.0p25
`2.0.0`	affected	≤ 2.0.0p34
`1.6.0`	affected	≤ 1.6.0p30

Configuration 1 [-]

OR	cpe:2.3:a:checkmk:checkmk:1.6.0:-::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b1::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b10::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b11::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b12::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b2::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b3::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b4::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b5::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b6::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b7::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b8::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:b9::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p1::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p10::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p11::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p12::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p13::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p14::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p15::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p16::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p17::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p18::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p19::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p2::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p20::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p21::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p22::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p23::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p24::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p25::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p26::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p27::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p28::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p29::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p3::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p4::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p5::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p6::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p7::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p8::::::
	cpe:2.3:a:checkmk:checkmk:1.6.0:p9::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:-::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b1::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b2::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b3::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b4::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b5::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b6::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b7::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:b8::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:i1::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p1::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p10::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p11::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p12::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p13::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p14::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p15::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p16::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p17::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p18::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p19::::::
	cpe:2.3:a:checkmk:checkmk:2.0.0:p2::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p20::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p21::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p22::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p23::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p24::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p25::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p26::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p27::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p28::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p29::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p3::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p30::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p31::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p32::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p33::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p34::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p4::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p5::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p6::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p7::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p8::::::
cpe:2.3:a:checkmk:checkmk:2.0.0:p9::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:-::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b1::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b2::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b3::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b4::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b5::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b6::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b7::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b8::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:b9::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p1::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p10::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p11::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p12::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p13::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p14::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p15::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p16::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p17::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p18::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p2::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p20::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p21::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p22::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p23::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p24::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p25::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p3::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p4::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p5::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p6::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p7::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p8::::::
cpe:2.3:a:checkmk:checkmk:2.1.0:p9::::::
cpe:2.3:a:checkmk:checkmk:2.2.0:-::::::
cpe:2.3:a:checkmk:checkmk:2.2.0:b1::::::
cpe:2.3:a:checkmk:checkmk:2.2.0:b2::::::
cpe:2.3:a:checkmk:checkmk:2.2.0:b3::::::
cpe:2.3:a:tribe29:checkmk:1.6.0b10:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0b11:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p10:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p11:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p12:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p13:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p14:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p15:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p16:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p17:::::::*
cpe:2.3:a:tribe29:checkmk:1.6.0p18:::::::*

No data.

Subscriptions

Vendors	Products
Checkmk Subscribe	Checkmk Subscribe
Tribe29 Subscribe	Checkmk Subscribe

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-23979	Inappropriate error handling in Tribe29 Checkmk <= 2.1.0p25, <= 2.0.0p34, <= 2.2.0b3 (beta), and all versions of Checkmk 1.6.0 causes the symmetric encryption of agent data to fail silently and transmit the data in plaintext in certain configurations.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://checkmk.com/werk/15423

History

Tue, 11 Feb 2025 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Tribe29

Published: 2023-04-04T06:30:29.538Z

Updated: 2025-02-11T17:07:22.757Z

Reserved: 2023-03-31T08:10:02.118Z

Link: CVE-2023-1768

Vulnrichment

Updated: 2024-08-02T05:57:25.231Z

NVD

Status : Modified

Published: 2023-04-04T07:15:11.697

Modified: 2024-11-21T07:39:52.147

Link: CVE-2023-1768

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

Tracking

JSON object

JSON object

JSON object

JSON object

JSON object