QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-39666

Back to search

CVE-2025-39666

Published: Apr 7, 2026

Modified: Apr 7, 2026

PUBLISHED

Description

Local privilege escalation in Checkmk 2.2.0 (EOL), Checkmk 2.3.0 before 2.3.0p46, Checkmk 2.4.0 before 2.4.0p25, and Checkmk 2.5.0 (beta) before 2.5.0b3 allows a site user to escalate their privileges to root, by manipulating files in the site context that are processed when the `omd` administrative command is run by root.

VendorProductVersions

Checkmk GmbH

Checkmk

affected
2.2.0
affected
2.3.0 - < 2.3.0p46
affected
2.4.0 - < 2.4.0p25
affected
2.5.0b1 - < 2.5.0b3

Weaknesses (CWE)

CWE-426
CWE-829

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now