Unrated severityNVD Advisory· Published Nov 18, 2025· Updated Nov 18, 2025
Insufficient permission validation when configuring notification parameters
CVE-2025-58122
Description
Insufficient permission validation in Checkmk 2.4.0 before version 2.4.0p16 allows low-privileged users to modify notification parameters via the REST API, which could lead to unauthorized actions or information disclosure.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.