Privilege escalation in jar_signature agent plugin in Checkmk versions <2.4.0b7 (beta), <2.3.0p32, <2.2.0p42, and 2.1.0p49 (EOL) allow user with write access to JAVA_HOME/bin directory to escalate privileges.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://checkmk.com/werk/17985 |
Configurations
No configuration.
History
13 May 2025, 11:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-05-13 11:15
Updated : 2025-05-13 19:35
NVD link : CVE-2025-32917
Mitre link : CVE-2025-32917
CVE.ORG link : CVE-2025-32917
JSON object : View
Products Affected
No product.
CWE
CWE-427
Uncontrolled Search Path Element