CVE-2025-1075
published 2025-02-19CVE-2025-1075: Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p27, <2.2.0p40, and 2.1.0p51 (EOL) causes LDAP credentials to be…
PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.29%
21.0th percentile
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p27, <2.2.0p40, and 2.1.0p51 (EOL) causes LDAP credentials to be written to Apache error log file accessible to administrators.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| checkmk | checkmk | < 2.1.0 | 2.1.0 |
| checkmk | checkmk | — | — |
| checkmk | checkmk | — | — |
| checkmk | checkmk | — | — |
| checkmk_gmbh | checkmk | 2.1.0 – 2.1.0p50 | — |
| checkmk_gmbh | checkmk | >= 2.2.0 < 2.2.0p40 | 2.2.0p40 |
| checkmk_gmbh | checkmk | >= 2.3.0 < 2.3.0p27 | 2.3.0p27 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv4.05.6MEDIUMCVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv5.6MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rg5f-r5jw-rvxg: Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2
ghsa_unreviewed·2025-02-19
CVE-2025-1075 [MEDIUM] CWE-532 GHSA-rg5f-r5jw-rvxg: Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p27, <2.2.0p40, and 2.1.0p51 (EOL) causes LDAP credentials to be written to Apache error log file accessible to administrators.
OSV
CVE-2025-1075: Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2
osv·2025-02-19·CVSS 5.6
CVE-2025-1075 [MEDIUM] CVE-2025-1075: Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p27, <2.2.0p40, and 2.1.0p51 (EOL) causes LDAP credentials to be written to Apache error log file accessible to administrators.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-02-19
Published