Home

Description

Improper Certificate Validation in Checkmk Exchange plugin VMware vSAN allows attackers in MitM position to intercept traffic.

PUBLISHED Reserved 2025-08-25 | Published 2025-08-28 | Updated 2025-08-28 | Assigner Checkmk




MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:H/SI:N/SA:N

Problem types

CWE-295 Improper Certificate Validation

Product status

Default status
affected

Credits

Felix Eberstaller (Limes Security) finder

Jakob Hartmann (Limes Security) finder

References

exchange.checkmk.com/p/vsan product

cve.org (CVE-2025-58126)

nvd.nist.gov (CVE-2025-58126)

Download JSON