CVE-2017-14955

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-14955
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14955.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-14955
Downstream
Published
2017-10-02T01:29:00.390Z
Modified
2026-04-10T03:57:36.633069Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Check_MK before 1.2.8p26 mishandles certain errors within the failed-login save feature because of a race condition, which allows remote attackers to obtain sensitive user information by reading a GUI crash report.

References

Affected packages

Git / github.com/checkmk/checkmk

Affected ranges

Type
GIT
Repo
https://github.com/checkmk/checkmk
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4dd7a3b115e8b3bae043ff01b2a81df96118f9a7
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
33fa2261f4ef9cb1c0a4327e9a4bbaf53fb43d6a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d9131e04331080fbff3e0cacc566536f3bd1179b
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
061db47e87c7f7a4e4818b1d905135c71194d043
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
de64256068dfa07067a91b208eba682f06dfc81d
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
68d690c8ae504e017fc2ae993c74b4afe9fea130
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
28db579dbd8d141783f5ac374582f308634807d3
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ff4caf934b53af5502d1e03a2a326e4b534b1dfb
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
8643176d8c7d83f12156768c7f5a0f5c8ea0df87
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
3cd1ad051831e3b6b8c5478f390a9da5620a6e18
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
7e89fef23aa79c0542f7f32b3ff22e6539cf3348
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
1f24140e46b1dabcf3702ab46f4fe7ffe06f2327
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e54ecf518508ee9c77e12508ceea3cc3b47e7f77
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ad22ba59da3345d5824012abd8a91fe7594be852
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
1f21b93537c0e9429237359b53f77aa23f72b532
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
b585bf6db2bac908b8800a468c98e4a8d68704dc
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bdbf9d6f199d66ead89d8b74f2cc2a0e0c52d4ca
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
7587c8acc9c3c1dd4913eb832e32149c507efc66
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.3-i6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.3-i7"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.4-b1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.5-i6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.6-b1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.6-b2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.6-p13"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.7-i1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.7-i1p2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.7-i2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.7-i3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.8-p18"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.8-p25"
        }
    ]
}

Affected versions

1.*
1.1.0beta17
v1.*
v1.1.0
v1.1.10
v1.1.10b1
v1.1.10b2
v1.1.11i1
v1.1.11i2
v1.1.11i3
v1.1.13i2
v1.1.13i3
v1.1.2
v1.1.3
v1.1.4
v1.1.6
v1.1.6b2
v1.1.7i2
v1.1.7i3
v1.1.7i4
v1.1.7i5
v1.1.8
v1.1.8b1
v1.1.8b2
v1.1.8b3
v1.1.9i1
v1.1.9i3
v1.1.9i4
v1.1.9i5
v1.1.9i7
v1.1.9i8
v1.1.9i9
v1.2.0b2
v1.2.0b3
v1.2.0b4
v1.2.0p1
v1.2.1i5
v1.2.3i4
v1.2.3i5
v1.2.3i6
v1.2.3i7
v1.2.4
v1.2.4b1
v1.2.4b2
v1.2.4b3
v1.2.4b4
v1.2.4p1
v1.2.5i1
v1.2.5i2
v1.2.5i3
v1.2.5i4
v1.2.5i5
v1.2.5i6
v1.2.6
v1.2.6b1
v1.2.6b11
v1.2.6b12
v1.2.6b2
v1.2.6b5
v1.2.6b6
v1.2.6p1
v1.2.6p11
v1.2.6p12
v1.2.6p13
v1.2.6p2
v1.2.6p3
v1.2.6p5
v1.2.6p8
v1.2.6p9
v1.2.7i1
v1.2.7i1p1
v1.2.7i1p2
v1.2.7i2
v1.2.7i3
v1.2.8
v1.2.8b1
v1.2.8b10
v1.2.8b11
v1.2.8b12
v1.2.8b13
v1.2.8b2
v1.2.8b3
v1.2.8b4
v1.2.8b5
v1.2.8b6
v1.2.8b7
v1.2.8b8
v1.2.8b9
v1.2.8p1
v1.2.8p10
v1.2.8p11
v1.2.8p12
v1.2.8p13
v1.2.8p14
v1.2.8p15
v1.2.8p16
v1.2.8p17
v1.2.8p18
v1.2.8p19
v1.2.8p2
v1.2.8p20
v1.2.8p21
v1.2.8p22
v1.2.8p23
v1.2.8p24
v1.2.8p25
v1.2.8p3
v1.2.8p4
v1.2.8p5
v1.2.8p6
v1.2.8p7
v1.2.8p8
v1.2.8p9

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.2.7-i4"
            }
        ]
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14955.json"