CVE-2017-11507
- Source
- https://cve.org/CVERecord?id=CVE-2017-11507
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-11507.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-11507
- Downstream
- Published
- 2017-12-11T16:29:00.203Z
- Modified
- 2026-04-10T04:35:46.824291Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A cross site scripting (XSS) vulnerability exists in CheckMK versions 1.2.8x prior to 1.2.8p25 and 1.4.0x prior to 1.4.0p9, allowing an unauthenticated attacker to inject arbitrary HTML or JavaScript via the outputformat parameter, and the username parameter of failed HTTP basic authentication attempts, which is returned unencoded in an internal server error page.
- References
Affected packages
Git / github.com/tribe29/checkmk
Affected ranges
- Type
- GIT
- Repo
- https://github.com/tribe29/checkmk
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "1.2.8" }, { "introduced": "0" }, { "last_affected": "1.2.8-b1" }, { "introduced": "0" }, { "last_affected": "1.2.8-b10" }, { "introduced": "0" }, { "last_affected": "1.2.8-b11" }, { "introduced": "0" }, { "last_affected": "1.2.8-b2" }, { "introduced": "0" }, { "last_affected": "1.2.8-b3" }, { "introduced": "0" }, { "last_affected": "1.2.8-b4" }, { "introduced": "0" }, { "last_affected": "1.2.8-b5" }, { "introduced": "0" }, { "last_affected": "1.2.8-b6" }, { "introduced": "0" }, { "last_affected": "1.2.8-b7" }, { "introduced": "0" }, { "last_affected": "1.2.8-b8" }, { "introduced": "0" }, { "last_affected": "1.2.8-b9" }, { "introduced": "0" }, { "last_affected": "1.2.8-p1" }, { "introduced": "0" }, { "last_affected": "1.2.8-p10" }, { "introduced": "0" }, { "last_affected": "1.2.8-p11" }, { "introduced": "0" }, { "last_affected": "1.2.8-p12" }, { "introduced": "0" }, { "last_affected": "1.2.8-p13" }, { "introduced": "0" }, { "last_affected": "1.2.8-p14" }, { "introduced": "0" }, { "last_affected": "1.2.8-p15" }, { "introduced": "0" }, { "last_affected": "1.2.8-p16" }, { "introduced": "0" }, { "last_affected": "1.2.8-p17" }, { "introduced": "0" }, { "last_affected": "1.2.8-p18" }, { "introduced": "0" }, { "last_affected": "1.2.8-p19" }, { "introduced": "0" }, { "last_affected": "1.2.8-p2" }, { "introduced": "0" }, { "last_affected": "1.2.8-p20" }, { "introduced": "0" }, { "last_affected": "1.2.8-p21" }, { "introduced": "0" }, { "last_affected": "1.2.8-p22" }, { "introduced": "0" }, { "last_affected": "1.2.8-p23" }, { "introduced": "0" }, { "last_affected": "1.2.8-p24" }, { "introduced": "0" }, { "last_affected": "1.2.8-p25" }, { "introduced": "0" }, { "last_affected": "1.2.8-p3" }, { "introduced": "0" }, { "last_affected": "1.2.8-p4" }, { "introduced": "0" }, { "last_affected": "1.2.8-p5" }, { "introduced": "0" }, { "last_affected": "1.2.8-p6" }, { "introduced": "0" }, { "last_affected": "1.2.8-p7" }, { "introduced": "0" }, { "last_affected": "1.2.8-p8" }, { "introduced": "0" }, { "last_affected": "1.2.8-p9" }, { "introduced": "0" }, { "last_affected": "1.4.0" }, { "introduced": "0" }, { "last_affected": "1.4.0-b1" }, { "introduced": "0" }, { "last_affected": "1.4.0-b2" }, { "introduced": "0" }, { "last_affected": "1.4.0-b3" }, { "introduced": "0" }, { "last_affected": "1.4.0-b4" }, { "introduced": "0" }, { "last_affected": "1.4.0-b5" }, { "introduced": "0" }, { "last_affected": "1.4.0-b6" }, { "introduced": "0" }, { "last_affected": "1.4.0-b7" }, { "introduced": "0" }, { "last_affected": "1.4.0-b8" }, { "introduced": "0" }, { "last_affected": "1.4.0-b9" }, { "introduced": "0" }, { "last_affected": "1.4.0-p1" }, { "introduced": "0" }, { "last_affected": "1.4.0-p2" }, { "introduced": "0" }, { "last_affected": "1.4.0-p3" }, { "introduced": "0" }, { "last_affected": "1.4.0-p4" }, { "introduced": "0" }, { "last_affected": "1.4.0-p5" }, { "introduced": "0" }, { "last_affected": "1.4.0-p6" }, { "introduced": "0" }, { "last_affected": "1.4.0-p7" }, { "introduced": "0" }, { "last_affected": "1.4.0-p8" }, { "introduced": "0" }, { "last_affected": "1.4.0-p9" } ] }
Affected versions
v1.*
v1.1.0
v1.1.10
v1.1.10b1
v1.1.10b2
v1.1.11i1
v1.1.11i2
v1.1.11i3
v1.1.13i2
v1.1.13i3
v1.1.2
v1.1.3
v1.1.4
v1.1.6
v1.1.6b2
v1.1.7i2
v1.1.7i3
v1.1.7i4
v1.1.7i5
v1.1.8
v1.1.8b1
v1.1.8b2
v1.1.8b3
v1.1.9i1
v1.1.9i3
v1.1.9i4
v1.1.9i5
v1.1.9i7
v1.1.9i8
v1.1.9i9
v1.2.0b2
v1.2.0b3
v1.2.0b4
v1.2.0p1
v1.2.1i5
v1.2.3i4
v1.2.3i5
v1.2.3i6
v1.2.5i1
v1.2.5i6
v1.2.8
v1.2.8b1
v1.2.8b10
v1.2.8b11
v1.2.8b12
v1.2.8b13
v1.2.8b2
v1.2.8b3
v1.2.8b4
v1.2.8b5
v1.2.8b6
v1.2.8b7
v1.2.8b8
v1.2.8b9
v1.2.8p1
v1.2.8p10
v1.2.8p11
v1.2.8p12
v1.2.8p13
v1.2.8p14
v1.2.8p15
v1.2.8p16
v1.2.8p17
v1.2.8p18
v1.2.8p19
v1.2.8p2
v1.2.8p20
v1.2.8p21
v1.2.8p22
v1.2.8p23
v1.2.8p24
v1.2.8p25
v1.2.8p3
v1.2.8p4
v1.2.8p5
v1.2.8p6
v1.2.8p7
v1.2.8p8
v1.2.8p9
v1.4.0
v1.4.0b1
v1.4.0b2
v1.4.0b3
v1.4.0b4
v1.4.0b5
v1.4.0b6
v1.4.0b7
v1.4.0b8
v1.4.0i1
v1.4.0i2
v1.4.0i3
v1.4.0p1
v1.4.0p2
v1.4.0p3
v1.4.0p4
v1.4.0p5
v1.4.0p6
v1.4.0p7
v1.4.0p8
v1.4.0p9