CNNVD-202507-391 Information

CNNVD ID

CNNVD-202507-391

Related CVE

CVE-2025-32918

• CNNVD Published: 2025-07-04

Description (Chinese)

Checkmk是Checkmk公司的一个 IT 监控平台。 Checkmk存在安全漏洞，该漏洞源于Livestatus命令分隔符中和不当，可能导致注入任意Livestatus命令。以下版本受到影响：2.4.0p6之前版本、2.3.0p35之前版本、2.2.0p44之前版本和2.1.0版本。

Description (English)

Checkmk is an IT monitoring platform for Checkmk. Checkmk has a security loophole, which stems from the inappropriateity of the Livestatus command separator and could lead to the injection of any Livestatus command. The following versions were affected: 2.4.0 p6, 2.3.0 p35, 2.2.0 p44 and 2.1.0.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Checkmk

Published

2025-07-04

Last Modified

2026-02-24

References

https://checkmk.com/werk/17987 https://nvd.nist.gov/vuln/detail/CVE-2025-32918

Patch

https://checkmk.com/werk/17987