wid-sec-w-2026-0681 · Published 2026-03-10 · View on BSI CERT-Bund ↗

Checkmk: Vulnerability allows Umgehen from Sicherheitsvorkehrungen

CVSS 7.3 HIGH

Risk Summary

Exposure of session signing secret in Checkmk <2.4.0p23, <2.3.0p45 and 2.2.0 allows an administrator of a remote site with config sync enabled to hijack sessions on the central site by forging session cookies.

CVEs (1)

CVE-2025-64998

Affected Vendors

Checkmk

Affected Products (4)

Checkmk · Checkmk <2.4.0p23

Checkmk · Checkmk 2.4.0p23

Checkmk · Checkmk <2.3.0p45

Checkmk · Checkmk 2.3.0p45

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more