VYPR
Unrated severityNVD Advisory· Published Nov 18, 2025· Updated Nov 18, 2025

Insufficient permission validation when configuring notification parameters

CVE-2025-58122

Description

Insufficient permission validation in Checkmk 2.4.0 before version 2.4.0p16 allows low-privileged users to modify notification parameters via the REST API, which could lead to unauthorized actions or information disclosure.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Checkmk/Checkmkllm-fuzzy2 versions
    >=2.4.0, <2.4.0p16+ 1 more
    • (no CPE)range: >=2.4.0, <2.4.0p16
    • (no CPE)range: 2.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.