VYPR
Unrated severityNVD Advisory· Published May 22, 2025· Updated May 22, 2025

Sensitive data exposed during automatic agent updates

CVE-2025-32915

Description

Packages downloaded by Checkmk's automatic agent updates on Linux and Solaris have incorrect permissions in Checkmk < 2.4.0p1, < 2.3.0p32, < 2.2.0p42 and <= 2.1.0p49 (EOL). This allows a local attacker to read sensitive data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Checkmk/Checkmkllm-fuzzy2 versions
    < 2.4.0p1, < 2.3.0p32, < 2.2.0p42, <= 2.1.0p49+ 1 more
    • (no CPE)range: < 2.4.0p1, < 2.3.0p32, < 2.2.0p42, <= 2.1.0p49
    • (no CPE)range: 2.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.