CVE-2025-39666

Summary

Local privilege escalation in Checkmk 2.2.0 (EOL), Checkmk 2.3.0 before 2.3.0p46, Checkmk 2.4.0 before 2.4.0p25, and Checkmk 2.5.0 (beta) before 2.5.0b3 allows a site user to escalate their privileges to root, by manipulating files in the site context that are processed when the omd administrative command is run by root.

Affected Software

VendorProductVersion RangeStatus
Checkmk GmbHCheckmk2.2.0affected
Checkmk GmbHCheckmk2.3.0 < 2.3.0p46affected
Checkmk GmbHCheckmk2.4.0 < 2.4.0p25affected
Checkmk GmbHCheckmk2.5.0b1 < 2.5.0b3affected

Weaknesses

  • CWE-426: CWE-426: Untrusted Search Path
  • CWE-829: CWE-829: Inclusion of Functionality from Untrusted Control Sphere

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References