CVE-2023-2020 Information

Description

Insufficient permission checks in the REST API in Tribe29 Checkmk <= 2.1.0p27 and <= 2.2.0b4 (beta) allow unauthorized users to schedule downtimes for any host.

Reference

https://checkmk.com/werk/13981