Primary

Context

Checkmk Privilege Escalation Vulnerability in jar_signature Agent Plugin

Vulnerability

Patched

A privilege escalation vulnerability has been identified in the jar_signature agent plugin of Checkmk. This issue affects versions prior to 2.4.0b7 (beta), prior to 2.3.0p32, prior to 2.2.0p42, and 2.1.0p49 (EOL). The vulnerability allows users with write access to the JAVA_HOME/bin directory to escalate privileges. The jar_signature plugin adds the JAVA_HOME/bin directory to the PATH environment variable, enabling users to replace legitimate commands with malicious scripts and execute them as root.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to execute commands as the root user.

Remediation

Users can upgrade to Checkmk versions 2.4.0, 2.3.0p33, or 2.2.0p43 to address this vulnerability. Checkmk 2.5.0b1 will also include the fix.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

5.0

exploitability

3.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

5.0

exploitability

3.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Checkmk Privilege Escalation Vulnerability in jar_signature Agent Plugin

Vulnerability

Impact

Remediation

Affected Products

Checkmk

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating