Werk #6566: Fixed possible XSS on agent update status views

Name: checkmk
Rating: 4.7 (114 reviews)

Component

Agent bakery

Title

Fixed possible XSS on agent update status views

Date

Sep 13, 2018

Level

Trivial Change

Class

Security Fix

Compatibility

Compatible - no manual interaction needed

Checkmk versions & editions

1.6.0b1 Not yet released	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0b1 Not yet released	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0b1 Not yet released	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0b1 Not yet released	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0b1 Not yet released	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0b1	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.5.0p5	Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.4.0p36	Checkmk Enterprise (CEE), Checkmk MSP (CME)

Parts of the agent deployment status could be used to trigger XSS injections.