CVE-2025-32916

216.73.216.36

· Published 09/10/2025 15:16 · Modified 09/10/2025 15:50

Labels: CVE-2025-32916 2025-10-09 CVE-2025-32916 CWE-598 [email protected]

Essential information

Published: 09/10/2025 15:16
Modified: 09/10/2025 15:50
Author: —
Creator: —
CVSS: 1.0 LOW (v3) 1.0 LOW (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4.0p13, <2.3.0p38, <2.2.0p46, and 2.1.0 (EOL) may cause sensitive form data to be included in URL query parameters, which may be logged in various places such as browser history or web server logs.

NVD status

Status: Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
checkmk / checkmk	`cpe:2.3:a:checkmk:checkmk:<2.4.0p13:::::::*`
checkmk / checkmk	`cpe:2.3:a:checkmk:checkmk:<2.3.0p38:::::::*`
checkmk / checkmk	`cpe:2.3:a:checkmk:checkmk:<2.2.0p46:::::::*`
checkmk / checkmk	`cpe:2.3:a:checkmk:checkmk:2.1.0:::::::*`