Products
MikroTik
- 2.0.0 - 2.5.5
- 0.4a_mk - 2.0a
Source
security@checkmk.com
Tags
CVE-2024-38861 details
Published : Sept. 27, 2024, 9:15 a.m.
Last Modified : Sept. 27, 2024, 9:15 a.m.
Last Modified : Sept. 27, 2024, 9:15 a.m.
Description
Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM position to intercept traffic. This issue affects MikroTik: from 2.0.0 through 2.5.5, from 0.4a_mk through 2.0a.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|---|---|
| CWE-295 | Improper Certificate Validation | The product does not validate, or incorrectly validates, a certificate. |
References
| URL | Source |
|---|---|
| https://exchange.checkmk.com/p/mikrotik | security@checkmk.com |
This website uses the NVD API, but is not approved or certified by it.