Home

Description

Local privilege escalation in Checkmk 2.2.0 (EOL), Checkmk 2.3.0 before 2.3.0p46, Checkmk 2.4.0 before 2.4.0p25, and Checkmk 2.5.0 (beta) before 2.5.0b3 allows a site user to escalate their privileges to root, by manipulating files in the site context that are processed when the `omd` administrative command is run by root.

PUBLISHED Reserved 2025-04-16 | Published 2026-04-07 | Updated 2026-04-07 | Assigner Checkmk




CRITICAL: 9.3CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Problem types

CWE-426: Untrusted Search Path

CWE-829: Inclusion of Functionality from Untrusted Control Sphere

Product status

Default status
unaffected

2.2.0 (semver)
affected

2.3.0 (semver) before 2.3.0p46
affected

2.4.0 (semver) before 2.4.0p25
affected

2.5.0b1 (semver) before 2.5.0b3
affected

References

checkmk.com/werk/18891 vendor-advisory

cve.org (CVE-2025-39666)

nvd.nist.gov (CVE-2025-39666)

Download JSON