Vulnerability Details : CVE-2017-11507
A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.2.8x prior to 1.2.8p25 and 1.4.0x prior to 1.4.0p9, allowing an unauthenticated attacker to inject arbitrary HTML or JavaScript via the output_format parameter, and the username parameter of failed HTTP basic authentication attempts, which is returned unencoded in an internal server error page.
Vulnerability category: Cross site scripting (XSS)
Products affected by CVE-2017-11507
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b1:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b3:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b2:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b9:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b11:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p5:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p7:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p5:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p7:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p14:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p16:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p21:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p23:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b3:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b4:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b5:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b6:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b7:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p9:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p1:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p2:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p3:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p17:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p18:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p19:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p20:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b5:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b6:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b7:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b8:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p1:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p2:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p3:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p4:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p8:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p9:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p10:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p11:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p12:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p25:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b2:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b4:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:b9:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b1:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b8:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:b10:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p6:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.4.0:p8:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p4:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p6:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p13:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p15:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p22:*:*:*:*:*:*
- cpe:2.3:a:check_mk_project:check_mk:1.2.8:p24:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-11507
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 41 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-11507
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST | |
6.1
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
2.8
|
2.7
|
NIST |
CWE ids for CVE-2017-11507
-
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-11507
-
https://www.tenable.com/security/research/tra-2017-20
[R2] Check_MK Multisite Web UI Stored and Reflected XSS - Research Advisory | TenableĀ®Exploit;Third Party Advisory
-
http://mathias-kettner.com/check_mk_werks.php?werk_id=7661
Fixed possible stored XSS using the internal server error handler (Werk #7661) | checkmkVendor Advisory
Jump to