Security Advisory

CVE-2024-13722

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-04 22:04:00

Last updated 2025-11-03 19:29:15

Assigner KoreLogic

State PUBLISHED

Description

The "NagVis" component within Checkmk is vulnerable to reflected cross-site scripting. An attacker can craft a malicious link that will execute arbitrary JavaScript in the context of the browser once clicked. The attack can be performed on both authenticated and unauthenticated users.

← Browse all CVEs View on cve.org ↗