A logic error in the remove_password() function in Checkmk GmbH's Checkmk versions <2.4.0p23, <2.3.0p43, and 2.2.0 (EOL) allows a low-privileged user to cause data loss.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Checkmk |
|
No data.
No data.
No data.
References
| Link | Providers |
|---|---|
| https://checkmk.com/werk/19041 |
|
History
Wed, 04 Mar 2026 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 04 Mar 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A logic error in the remove_password() function in Checkmk GmbH's Checkmk versions <2.4.0p23, <2.3.0p43, and 2.2.0 (EOL) allows a low-privileged user to cause data loss. | |
| Title | Deletion of passwords via RestApi | |
| First Time appeared |
Checkmk
Checkmk checkmk |
|
| Weaknesses | CWE-863 | |
| CPEs | cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Checkmk
Checkmk checkmk |
|
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: Checkmk
Published:
Updated: 2026-03-04T14:07:12.933Z
Reserved: 2026-02-24T09:54:07.560Z
Link: CVE-2026-3103
Vulnrichment
Updated: 2026-03-04T14:07:10.560Z
NVD
Status : Received
Published: 2026-03-04T14:16:14.857
Modified: 2026-03-04T14:16:14.857
Link: CVE-2026-3103
Redhat
No data.
OpenCVE Enrichment
No data.