Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4.0p13, <2.3.0p38, <2.2.0p46, and 2.1.0 (EOL) may cause sensitive form data to be included in URL query parameters, which may be logged in various places such as browser history or web server logs.
Exploitability
AV:LAC:LAT:PPR:HUI:PVulnerable System
VC:LVI:NVA:NSubsequent System
SC:LSI:NSA:N1/CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:NOther