CVE-2025-32917 Privilege escalation in jar_signature

🗓️ 13 May 2025 10:45:31Reported by CheckmkType

Privilege escalation in jar_signature plugin allows unauthorized users to gain higher privileges.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2025-32917	13 May 202511:29	–	circl
CNNVD	Checkmk 安全漏洞	13 May 202500:00	–	cnnvd
CVE	CVE-2025-32917	13 May 202510:45	–	cve
EUVD	EUVD-2025-14373	3 Oct 202520:07	–	euvd
NVD	CVE-2025-32917	13 May 202511:15	–	nvd
OpenVAS	Checkmk < 2.2.0p42, 2.3.x < 2.3.0p32 Privilege Escalation Vulnerability	16 May 202500:00	–	openvas
OSV	UBUNTU-CVE-2025-32917	13 May 202511:15	–	osv
Positive Technologies	PT-2025-20885 · Checkmk · Checkmk	13 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-32917	15 May 202511:16	–	redhatcve
UbuntuCve	CVE-2025-32917	13 May 202511:15	–	ubuntucve

[
  {
    "defaultStatus": "unaffected",
    "product": "Checkmk",
    "vendor": "Checkmk GmbH",
    "versions": [
      {
        "lessThan": "2.4.0b7",
        "status": "affected",
        "version": "2.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.3.0p32",
        "status": "affected",
        "version": "2.3.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.2.0p42",
        "status": "affected",
        "version": "2.2.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "2.1.0p50",
        "status": "affected",
        "version": "2.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
checkmk	www.checkmk.com/werk/17985

13 May 2025 10:45Current

CVSS 45.2

EPSS0.0026

CWE-427