Werk #15689: Dependency updates
| Komponente | Core & setup |
| Titel | Dependency updates |
| Datum | 28.06.2023 |
| Checkmk Edition | Checkmk Raw (CRE) |
| Checkmk-Version | 2.1.0p31 2.2.0p5 |
| Level | Kleine Änderung |
| Klasse | Sicherheitsfix |
| Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen |
This Werk updates several dependencies such as openssl, various python dependencies, etc.
To our knowledge among the vulnerabilities fixed in those dependencies only CVE-2023-32681 could be exploited. This vulnerability could cause a Proxy-Authorization header leakage.
Vulnerability Management: We have rated the issue with a CVSS Score of 6.1 (Medium) with the following CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N.
