
We found results for “”
CVE-2025-2092
Good to know:

Date: April 22, 2025
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p29, <2.2.0p41 and <=2.1.0p49 (EOL) causes remote site authentication secrets to be written to log files accessible to administrators.
Severity Score
Severity Score
Weakness Type (CWE)
Insertion of Sensitive Information into Log File
CWE-532Top Fix

Upgrade Version
Upgrade to version https://github.com/Checkmk/checkmk.git - v2.2.0p41;https://github.com/Checkmk/checkmk.git - v2.3.0p29
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | NONE |
Scope (S): | UNCHANGED |
Confidentiality (C): | HIGH |
Integrity (I): | NONE |
Availability (A): | NONE |