QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-58121

Back to search

CVE-2025-58121

Published: Nov 18, 2025

Modified: Nov 18, 2025

PUBLISHED

Description

Insufficient permission validation on multiple REST API endpoints in Checkmk 2.2.0, 2.3.0, and 2.4.0 before version 2.4.0p16 allows low-privileged users to perform unauthorized actions or obtain sensitive information

VendorProductVersions

Checkmk GmbH

Checkmk

affected
2.4.0 - < 2.4.0p16
affected
2.3.0
affected
2.2.0

Weaknesses (CWE)

CWE-280

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now