Description
Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p21, 2.3.0 before 2.3.0p43, and 2.2.0 (EOL) allows users with the "Use WATO" permission to access the "Analyze configuration" page by directly navigating to its URL, bypassing the intended "Access analyze configuration" permission check. If these users also have the "Make changes, perform actions" permission, they can perform unauthorized actions such as disabling checks or acknowledging results.
References (1)
Core 1
Core References
Various Sources
https://checkmk.com/werk/19032
Scores
CVSS v4
5.3
EPSS
0.0023
EPSS Percentile
13.6%
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-862
Status
published
Products (3)
Checkmk GmbH/Checkmk
2.2.0
Checkmk GmbH/Checkmk
2.3.0 - 2.3.0p43
Checkmk GmbH/Checkmk
2.4.0 - 2.4.0p21
Published
Feb 09, 2026
Tracked Since
Feb 18, 2026