VYPR
Unrated severityOSV Advisory· Published Dec 18, 2025· Updated Dec 18, 2025

Exposure of SSH Private Keys in Remote Alert Handlers (Linux) Rule

CVE-2025-65000

Description

SSH private keys of the "Remote alert handlers (Linux)" rule were exposed in the rule page's HTML source in Checkmk <= 2.4.0p18 and all versions of Checkmk 2.3.0. This potentially allowed unauthorized triggering of predefined alert handlers on hosts where the handler was deployed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Checkmk/CheckmkOSV2 versions
    1.1.0beta17, v1.1.0, v1.1.10, …+ 1 more
    • (no CPE)range: 1.1.0beta17, v1.1.0, v1.1.10, …
    • (no CPE)range: <=2.4.0p18, all versions of 2.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.