PT-2025-20885 · Checkmk · Checkmk
Published
2025-05-13
·
Updated
2025-05-13
·
CVE-2025-32917
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Checkmk versions prior to 2.4.0b7 (beta)
Checkmk versions prior to 2.3.0p32
Checkmk versions prior to 2.2.0p42
Checkmk version 2.1.0p49
Description:
The issue allows a user with write access to the
JAVA HOME/bin directory to escalate privileges. This is related to the jar signature agent plugin.Recommendations:
For versions prior to 2.4.0b7 (beta), update to version 2.4.0b7 or later.
For versions prior to 2.3.0p32, update to version 2.3.0p32 or later.
For versions prior to 2.2.0p42, update to version 2.2.0p42 or later.
For version 2.1.0p49, consider upgrading to a supported version, as 2.1.0p49 is end-of-life.
Fix
LPE
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Checkmk