Werk #15689: Dependency updates
Komponente | Core & setup |
Titel | Dependency updates |
Datum | 28.06.2023 |
Checkmk Edition | Checkmk Raw (CRE) |
Checkmk-Version | 2.1.0p31 2.2.0p5 |
Level | Kleine Änderung |
Klasse | Sicherheitsfix |
Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen |
This Werk updates several dependencies such as openssl, various python dependencies, etc.
To our knowledge among the vulnerabilities fixed in those dependencies only CVE-2023-32681 could be exploited. This vulnerability could cause a Proxy-Authorization header leakage.
Vulnerability Management: We have rated the issue with a CVSS Score of 6.1 (Medium) with the following CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N.