Unrated severityNVD Advisory· Published Oct 9, 2025· Updated Nov 3, 2025

Privilege Escalation in Windows License plugin for Checkmk Windows Agent

CVE-2025-32919

Description

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows Agent allows Privilege Escalation. This issue affects Checkmk: from 2.4.0 before 2.4.0p13, from 2.3.0 before 2.3.0p38, from 2.2.0 before 2.2.0p46, and all versions of 2.1.0 (EOL).

Affected products

Checkmk/Checkmkllm-fuzzy2 versions
2.1.0 (all versions), 2.2.0 before 2.2.0p46, 2.3.0 before 2.3.0p38, 2.4.0 before 2.4.0p13+ 1 more
- (no CPE)range: 2.1.0 (all versions), 2.2.0 before 2.2.0p46, 2.3.0 before 2.3.0p38, 2.4.0 before 2.4.0p13
- (no CPE)range: 2.4.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

checkmk.com/werk/18207mitrevendor-advisory
github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20250724-01_Checkmk_Agent_Privilege_Escalation_via_Insecure_Temporary_Filesmitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000