CVE-2025-1712 Arbitrary file write with vcrtrace

🗓️ 21 May 2025 09:10:42Reported by CheckmkType

CVE-2025-1712 allows authenticated attackers to write arbitrary files in Checkmk versions below specified.

Reporter	Title	Published	Views	Family All 10
CNNVD	Checkmk 安全漏洞	21 May 202500:00	–	cnnvd
CVE	CVE-2025-1712	21 May 202509:10	–	cve
EUVD	EUVD-2025-16082	3 Oct 202520:07	–	euvd
NVD	CVE-2025-1712	21 May 202509:15	–	nvd
OSV	UBUNTU-CVE-2025-1712	21 May 202509:15	–	osv
Positive Technologies	PT-2025-22330 · Checkmk · Checkmk	21 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-1712	7 Jan 202609:11	–	redhatcve
UbuntuCve	CVE-2025-1712	21 May 202509:15	–	ubuntucve
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2025-1712	2 Sep 202500:00	–	nessus
Vulnrichment	CVE-2025-1712 Arbitrary file write with vcrtrace	21 May 202509:10	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Checkmk",
    "vendor": "Checkmk GmbH",
    "versions": [
      {
        "lessThan": "2.4.0p1",
        "status": "affected",
        "version": "2.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.3.0p32",
        "status": "affected",
        "version": "2.3.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.2.0p42",
        "status": "affected",
        "version": "2.2.0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "2.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
checkmk	www.checkmk.com/werk/17996

21 May 2025 09:10Current

CVSS 48.7

EPSS0.00317

CWE-88