{"id":"CVE-2023-22359","details":"User enumeration in Checkmk \u003c=2.2.0p4 allows an authenticated attacker to enumerate usernames.","modified":"2026-04-10T04:55:21.751176Z","published":"2023-06-26T07:15:09.297Z","references":[{"type":"ADVISORY","url":"https://checkmk.com/werk/15890"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/checkmk/checkmk","events":[{"introduced":"0"},{"last_affected":"d6049cd2d82eba3842b30c305912b9e946842463"},{"introduced":"0"},{"last_affected":"6d181fbfbfbc98415313b4cb0ad96ded5ddd7abd"},{"introduced":"0"},{"last_affected":"267fa27ce44b36ca91fbd6446837c5713df736fc"},{"introduced":"0"},{"last_affected":"93590d801961d180c7958a478839a07b2cbb1d77"},{"introduced":"0"},{"last_affected":"4a9f01eaebaa33dd83008b72d3a7f54321d42b73"},{"introduced":"0"},{"last_affected":"c5a9ed82c6f3115b7aaa46c6aa1b63953d8d5ce5"},{"introduced":"0"},{"last_affected":"d85a2e5143ecba3b73784a9825264d0a576382b1"},{"introduced":"0"},{"last_affected":"d4289fb7f58f6387d62713179131946f44a9aa69"},{"introduced":"0"},{"last_affected":"d2607dde3dd4fcaf3357df418f83060293bed122"},{"introduced":"0"},{"last_affected":"6d181fbfbfbc98415313b4cb0ad96ded5ddd7abd"},{"introduced":"0"},{"last_affected":"6d181fbfbfbc98415313b4cb0ad96ded5ddd7abd"},{"introduced":"0"},{"last_affected":"267fa27ce44b36ca91fbd6446837c5713df736fc"},{"introduced":"0"},{"last_affected":"93590d801961d180c7958a478839a07b2cbb1d77"},{"introduced":"0"},{"last_affected":"4a9f01eaebaa33dd83008b72d3a7f54321d42b73"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.2.0-NA"},{"introduced":"0"},{"last_affected":"2.2.0-b1"},{"introduced":"0"},{"last_affected":"2.2.0-b2"},{"introduced":"0"},{"last_affected":"2.2.0-b3"},{"introduced":"0"},{"last_affected":"2.2.0-b4"},{"introduced":"0"},{"last_affected":"2.2.0-b5"},{"introduced":"0"},{"last_affected":"2.2.0-b6"},{"introduced":"0"},{"last_affected":"2.2.0-b7"},{"introduced":"0"},{"last_affected":"2.2.0-b8"},{"introduced":"0"},{"last_affected":"2.2.0-i1"},{"introduced":"0"},{"last_affected":"2.2.0-p1"},{"introduced":"0"},{"last_affected":"2.2.0-p2"},{"introduced":"0"},{"last_affected":"2.2.0-p3"},{"introduced":"0"},{"last_affected":"2.2.0-p4"}]}}],"versions":["1.1.0beta17","v1.1.0","v1.1.10","v1.1.10b1","v1.1.10b2","v1.1.11i1","v1.1.11i2","v1.1.11i3","v1.1.13i2","v1.1.13i3","v1.1.2","v1.1.3","v1.1.4","v1.1.6","v1.1.6b2","v1.1.7i2","v1.1.7i3","v1.1.7i4","v1.1.7i5","v1.1.8","v1.1.8b1","v1.1.8b2","v1.1.8b3","v1.1.9i1","v1.1.9i3","v1.1.9i4","v1.1.9i5","v1.1.9i7","v1.1.9i8","v1.1.9i9","v1.2.0b2","v1.2.0b3","v1.2.0b4","v1.2.0p1","v1.2.1i5","v1.2.3i4","v1.2.3i5","v1.2.3i6","v1.2.5i1","v1.2.5i6","v1.4.0i1","v1.4.0i2","v1.4.0i3","v1.5.0i1","v1.5.0i2","v1.5.0i3","v1.6.0b1","v2.0.0i1","v2.2.0","v2.2.0-rc1","v2.2.0b1","v2.2.0b1-rc1","v2.2.0b1-rc2","v2.2.0b2","v2.2.0b2-rc1","v2.2.0b3","v2.2.0b3-rc1","v2.2.0b4","v2.2.0b4-rc1","v2.2.0b5","v2.2.0b5-rc1","v2.2.0b5-rc2","v2.2.0b6","v2.2.0b6-rc1","v2.2.0b7","v2.2.0b7-rc1","v2.2.0b8","v2.2.0b8-rc1","v2.2.0p1","v2.2.0p1-rc1","v2.2.0p2","v2.2.0p2-rc1","v2.2.0p3","v2.2.0p3-rc1","v2.2.0p4","v2.2.0p4-rc1","v2.2.0p4-rc2","v2.2.0p5","v2.2.0p5-rc1","v2.2.0p6","v2.2.0p6-rc1","v2.2.0p6-rc2","v2.2.0p6-rc3","v2.2.0p7","v2.2.0p7-rc1","v2.2.0p8","v2.2.0p8-rc1","v2.2.0p8-rc2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-22359.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}]}