CNNVD-202602-1332 Information

CNNVD ID

CNNVD-202602-1332

Related CVE

CVE-2026-24095

• CNNVD Published: 2026-02-09

Description (Chinese)

Checkmk是Checkmk公司的一个 IT 监控平台。 Checkmk 2.4.0p21之前版本、2.3.0p43之前版本和2.2.0版本存在安全漏洞，该漏洞源于权限执行不当，可能导致具有Use WATO权限的用户绕过权限检查访问Analyze configuration页面并执行未授权操作。

Description (English)

Checkmk is an IT monitoring platform for Checkmk. Checkmk pre version 2.4.0p21, pre version 2.3.0p43 and version 2.2.0 have a security loophole, which stems from the improper execution of privileges, which may lead users with Use WaTO permission to bypass permissions to access the Analyze conversion page and perform unauthorized operations.

Vulnerability Type

其他

Affected Vendor

Checkmk

Published

2026-02-09

Last Modified

2026-02-24

References

https://checkmk.com/werk/19032 https://access.redhat.com/security/cve/cve-2026-24095

Patch

https://checkmk.com/werk/19032