CVE-2025-32917 | Checkmk up to 2.1.0p49/2.2.0p41/2.3.0p31/2.4.0b6 jar_signature Agent Plugin JAVA_HOME/bin uncontrolled search path

Inserito da Angelo Barbosa | Mag 13, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Checkmk up to 2.1.0p49/2.2.0p41/2.3.0p31/2.4.0b6. Affected by this issue is some unknown functionality of the file JAVA_HOME/bin of the component jar_signature Agent Plugin. The manipulation leads to uncontrolled search path.

This vulnerability is handled as CVE-2025-32917. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-32917 | Checkmk up to 2.1.0p49/2.2.0p41/2.3.0p31/2.4.0b6 jar_signature Agent Plugin JAVA_HOME/bin uncontrolled search path

Post correlati

CVE-2024-12929 | code-projects Student Management System 1.0.00 /addCatController.php size sql injection

CVE-2024-6535 | Red Hat Service Interconnect 1 Skupper default credentials

CVE-2024-27733 | Byzro Smart S42 Management Platform userattestation.php unrestricted upload

CVE-2024-54279 | WPNERD WP-NERD Toolkit Plugin up to 1.1 on WordPress exposure of sensitive system information to an unauthorized control sphere