CVE-2025-32919 HIGH

CVE-2025-32919: Privilege Escalation in Windows License plugin for Checkmk Windows Agent

Vendor Checkmk Gmbh
Product Checkmk
Weakness CWE-427
Published October 9, 2025
Last update November 3, 2025

CVSS base score

8.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

What the vulnerability does

01Description

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows Agent allows Privilege Escalation. This issue affects Checkmk: from 2.4.0 before 2.4.0p13, from 2.3.0 before 2.3.0p38, from 2.2.0 before 2.2.0p46, and all versions of 2.1.0 (EOL).

Key dates

02Disclosure timeline

October 9, 2025 CVE published
November 3, 2025 Record updated