QwikSec

Security Database

CVE

CWE

Training

CVE-2025-32919

Published: Oct 9, 2025

Modified: Nov 3, 2025

PUBLISHED

Description

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows Agent allows Privilege Escalation. This issue affects Checkmk: from 2.4.0 before 2.4.0p13, from 2.3.0 before 2.3.0p38, from 2.2.0 before 2.2.0p46, and all versions of 2.1.0 (EOL).

Vendor	Product	Versions
Checkmk GmbH	Checkmk	affected `2.4.0 - < 2.4.0p13` affected `2.3.0 - < 2.3.0p38` affected `2.2.0 - < 2.2.0p46` affected `2.1.0`

Weaknesses (CWE)

References

https://checkmk.com/werk/18207

vendor-advisory

https://github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20250724-01_Checkmk_Agent_Privilege_Escalation_via_Insecure_Temporary_Files

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.