CVE-2025-32919

Privilege Escalation in Windows License plugin for Checkmk Windows Agent

Description

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows Agent allows Privilege Escalation. This issue affects Checkmk: from 2.4.0 before 2.4.0p13, from 2.3.0 before 2.3.0p38, from 2.2.0 before 2.2.0p46, and all versions of 2.1.0 (EOL).

INFO

Published Date :

2025-10-09T15:01:42.606Z

Last Modified :

2025-11-03T17:32:30.502Z

Source :

Checkmk

AFFECTED PRODUCTS

The following products are affected by CVE-2025-32919 vulnerability.

Vendors	Products
Checkmk	Checkmk
Microsoft	Windows

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-32919.

URL	Resource
http://seclists.org/fulldisclosure/2025/Oct/6
https://checkmk.com/werk/18207
https://github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20250724-01_Checkmk_Agent_Privilege_Escalation_via_Insecure_Temporary_Files

CVSS Vulnerability Scoring System

V4
V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact