{"id":"CVE-2025-64996","details":"In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mk_inotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification of monitoring data.","modified":"2026-03-13T03:47:52.457747Z","published":"2025-11-18T16:15:46.563Z","references":[{"type":"ADVISORY","url":"https://checkmk.com/werk/18570"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/checkmk/checkmk","events":[{"introduced":"0"},{"fixed":"779a2941a075e1461b45407f715176524414b994"},{"introduced":"0"},{"last_affected":"779a2941a075e1461b45407f715176524414b994"},{"introduced":"0"},{"last_affected":"774354b2551f8e27948fc4cebfc950ee81d28e0d"},{"introduced":"0"},{"last_affected":"5ba483a2e011b281853e3d4789c7f77d5bd2915c"},{"introduced":"0"},{"last_affected":"fd541d4d7d95668dd33d61bc16fa8df17f4affcf"},{"introduced":"0"},{"last_affected":"2a6bc3d8dc8852375275f81654dd00a1f94f5ffd"},{"introduced":"0"},{"last_affected":"1fc0aea14b848c3d4eaf779a42ac59e3af0e8df6"},{"introduced":"0"},{"last_affected":"d3c7ace5f5f48c54974558e49f4a088735be56a8"},{"introduced":"0"},{"last_affected":"774354b2551f8e27948fc4cebfc950ee81d28e0d"},{"introduced":"0"},{"last_affected":"3b78272d604bfda3f7954ae5cec8ff3e3fddc5cf"},{"introduced":"0"},{"last_affected":"72fdb481b2f673c5a80d56cfec3dffa598195a0e"},{"introduced":"0"},{"last_affected":"a6aaa241192f2257300a50839bf7423b335b7771"},{"introduced":"0"},{"last_affected":"418c120db01cb5030ac6d51e2b54b5277e44738b"},{"introduced":"0"},{"last_affected":"a5fbb41e2f4568843e01625799cedbfd753373c6"},{"introduced":"0"},{"last_affected":"257af35825115a122e4100973d840c041ea3edf5"},{"introduced":"0"},{"last_affected":"b765e39ffb10efc5bf5908857708269530c279b9"},{"introduced":"0"},{"last_affected":"5e13705010f4fc8edd4fbd6165929c9711af3ec6"},{"introduced":"0"},{"last_affected":"ef9f4eb93199860e6228f6ed61b4839dac08897d"},{"introduced":"0"},{"last_affected":"4477439987a148bcf3aa82fa9603f814b63be789"},{"introduced":"0"},{"last_affected":"5ba483a2e011b281853e3d4789c7f77d5bd2915c"},{"introduced":"0"},{"last_affected":"570a45d3057c0e93d578023268ad80adcca0b3f9"},{"introduced":"0"},{"last_affected":"c35d3f8bb42581be37e1c127e24db33cb3b21b9c"},{"introduced":"0"},{"last_affected":"cc70c4960fd683bcc20c932fa4fc9dfb5603c823"},{"introduced":"0"},{"last_affected":"c48f224bdb7455b977ddf276b68a8b485e781951"},{"introduced":"0"},{"last_affected":"b059bcabaa18a351f410f73b07cc86b877d54dcd"},{"introduced":"0"},{"last_affected":"63a5c86fcf61869353ff6334cc5d3215ad8a279a"},{"introduced":"0"},{"last_affected":"d30336dfdd1f9587f4be5dab21b4cb8e6f174683"},{"introduced":"0"},{"last_affected":"9d932b6ef60b2ff46bd38576f355411d40a4e6b0"},{"introduced":"0"},{"last_affected":"e2dd54a1897a230eabd6176c95a83391ba3e5420"},{"introduced":"0"},{"last_affected":"0a8e4f2502496b7991a330c5aea61196c023a2bf"},{"introduced":"0"},{"last_affected":"fd541d4d7d95668dd33d61bc16fa8df17f4affcf"},{"introduced":"0"},{"last_affected":"9a9f01f52a3dbf900cadf984cd274f1bcd463232"},{"introduced":"0"},{"last_affected":"6fdb329ff5c707e469c622dce532ecf61cc7aec1"},{"introduced":"0"},{"last_affected":"3c9a97371302282f2f7554f3d8b48eca91a6e082"},{"introduced":"0"},{"last_affected":"0b68be456036a63c34633d33e9231a5930e253b7"},{"introduced":"0"},{"last_affected":"3fa6f784f929a7d79248e0b212a238e0328d2942"},{"introduced":"0"},{"last_affected":"a1ade8ba564934cabb92903f49190ee73c6e94b3"},{"introduced":"0"},{"last_affected":"8b9812eceee2177dc6fa389a3e13f09fcd67392b"},{"introduced":"0"},{"last_affected":"b759adfe10b408d26d86ab1a16cb7dbd1eb18ada"},{"introduced":"0"},{"last_affected":"f1239fb557aaf7272df83c0d87e11100889b872c"},{"introduced":"0"},{"last_affected":"bd59df42c25d0fba83d5bc86728b6ce915b0f119"},{"introduced":"0"},{"last_affected":"2a6bc3d8dc8852375275f81654dd00a1f94f5ffd"},{"introduced":"0"},{"last_affected":"8a3da827dd0129517934ac678ba7e356dd7f1174"},{"introduced":"0"},{"last_affected":"1fc0aea14b848c3d4eaf779a42ac59e3af0e8df6"},{"introduced":"0"},{"last_affected":"d3c7ace5f5f48c54974558e49f4a088735be56a8"},{"introduced":"0"},{"last_affected":"4dabbfb583bb1e70b3257a8a3fc7bcdacaf8b4e9"},{"introduced":"0"},{"last_affected":"f93c345b2ef1435d51333d3593a6b1701d5c249c"},{"introduced":"0"},{"last_affected":"241e7e776b96d316693575e91023518e20e171be"},{"introduced":"0"},{"last_affected":"4abde4a41de677e103561e4fb75b81f6ee8b80dd"},{"introduced":"0"},{"last_affected":"4807b162eabc6da5accf1391ddd4c35dc964f904"},{"introduced":"0"},{"last_affected":"ad0758a3c7d5c68ceb2b561cc099d5b0dcf84170"},{"introduced":"0"},{"last_affected":"a314c586cd7a3ebb27029427654d0bea50db5452"},{"introduced":"0"},{"last_affected":"cf744b214554060204275d22fad1dd92e8f61fa9"},{"introduced":"0"},{"last_affected":"241a54afaa485f507682f43e4ca5ed8c36c85c22"},{"introduced":"0"},{"last_affected":"7a09b9121bd499fd38d2167004089f0da782d68a"},{"introduced":"0"},{"last_affected":"4807b162eabc6da5accf1391ddd4c35dc964f904"},{"introduced":"0"},{"last_affected":"407df5847db1227bee188f0d81929351616da740"},{"introduced":"0"},{"last_affected":"5ef5a23e8333efd927f110e0d35ee501d6f02031"},{"introduced":"0"},{"last_affected":"e167463fc0836b6d90a444854ffcc8ac99aa9603"},{"introduced":"0"},{"last_affected":"672ad736fd4844851e3a95aa6a725213b7d432e0"},{"introduced":"0"},{"last_affected":"cf33e0be1b2b7de8d475d977c0bacfb80f5bd85c"},{"introduced":"0"},{"last_affected":"16499ad6c4705e789849147884882d40cc56767a"},{"introduced":"0"},{"last_affected":"ad0758a3c7d5c68ceb2b561cc099d5b0dcf84170"},{"introduced":"0"},{"last_affected":"a314c586cd7a3ebb27029427654d0bea50db5452"},{"introduced":"0"},{"last_affected":"cf744b214554060204275d22fad1dd92e8f61fa9"},{"introduced":"0"},{"last_affected":"241a54afaa485f507682f43e4ca5ed8c36c85c22"},{"introduced":"0"},{"last_affected":"7a09b9121bd499fd38d2167004089f0da782d68a"},{"introduced":"0"},{"last_affected":"365b53739e47f81c0e8b55934b6d9f59ddb39cf7"},{"introduced":"0"},{"last_affected":"e4ca27fe3f410af7eded09e0809d06066390ce0d"},{"introduced":"0"},{"last_affected":"df508000718009a401a35af049c246997421bdba"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.3.0"},{"introduced":"0"},{"last_affected":"2.3.0-NA"},{"introduced":"0"},{"last_affected":"2.3.0-b1"},{"introduced":"0"},{"last_affected":"2.3.0-b2"},{"introduced":"0"},{"last_affected":"2.3.0-b3"},{"introduced":"0"},{"last_affected":"2.3.0-b4"},{"introduced":"0"},{"last_affected":"2.3.0-b5"},{"introduced":"0"},{"last_affected":"2.3.0-b6"},{"introduced":"0"},{"last_affected":"2.3.0-p1"},{"introduced":"0"},{"last_affected":"2.3.0-p10"},{"introduced":"0"},{"last_affected":"2.3.0-p11"},{"introduced":"0"},{"last_affected":"2.3.0-p12"},{"introduced":"0"},{"last_affected":"2.3.0-p13"},{"introduced":"0"},{"last_affected":"2.3.0-p14"},{"introduced":"0"},{"last_affected":"2.3.0-p15"},{"introduced":"0"},{"last_affected":"2.3.0-p16"},{"introduced":"0"},{"last_affected":"2.3.0-p17"},{"introduced":"0"},{"last_affected":"2.3.0-p18"},{"introduced":"0"},{"last_affected":"2.3.0-p19"},{"introduced":"0"},{"last_affected":"2.3.0-p2"},{"introduced":"0"},{"last_affected":"2.3.0-p20"},{"introduced":"0"},{"last_affected":"2.3.0-p21"},{"introduced":"0"},{"last_affected":"2.3.0-p22"},{"introduced":"0"},{"last_affected":"2.3.0-p23"},{"introduced":"0"},{"last_affected":"2.3.0-p24"},{"introduced":"0"},{"last_affected":"2.3.0-p25"},{"introduced":"0"},{"last_affected":"2.3.0-p26"},{"introduced":"0"},{"last_affected":"2.3.0-p27"},{"introduced":"0"},{"last_affected":"2.3.0-p28"},{"introduced":"0"},{"last_affected":"2.3.0-p29"},{"introduced":"0"},{"last_affected":"2.3.0-p3"},{"introduced":"0"},{"last_affected":"2.3.0-p30"},{"introduced":"0"},{"last_affected":"2.3.0-p31"},{"introduced":"0"},{"last_affected":"2.3.0-p32"},{"introduced":"0"},{"last_affected":"2.3.0-p33"},{"introduced":"0"},{"last_affected":"2.3.0-p34"},{"introduced":"0"},{"last_affected":"2.3.0-p35"},{"introduced":"0"},{"last_affected":"2.3.0-p36"},{"introduced":"0"},{"last_affected":"2.3.0-p37"},{"introduced":"0"},{"last_affected":"2.3.0-p38"},{"introduced":"0"},{"last_affected":"2.3.0-p39"},{"introduced":"0"},{"last_affected":"2.3.0-p4"},{"introduced":"0"},{"last_affected":"2.3.0-p40"},{"introduced":"0"},{"last_affected":"2.3.0-p5"},{"introduced":"0"},{"last_affected":"2.3.0-p6"},{"introduced":"0"},{"last_affected":"2.3.0-p7"},{"introduced":"0"},{"last_affected":"2.3.0-p8"},{"introduced":"0"},{"last_affected":"2.3.0-p9"},{"introduced":"0"},{"last_affected":"2.4.0-NA"},{"introduced":"0"},{"last_affected":"2.4.0-b1"},{"introduced":"0"},{"last_affected":"2.4.0-b2"},{"introduced":"0"},{"last_affected":"2.4.0-b3"},{"introduced":"0"},{"last_affected":"2.4.0-b4"},{"introduced":"0"},{"last_affected":"2.4.0-b5"},{"introduced":"0"},{"last_affected":"2.4.0-b6"},{"introduced":"0"},{"last_affected":"2.4.0-p1"},{"introduced":"0"},{"last_affected":"2.4.0-p10"},{"introduced":"0"},{"last_affected":"2.4.0-p11"},{"introduced":"0"},{"last_affected":"2.4.0-p12"},{"introduced":"0"},{"last_affected":"2.4.0-p13"},{"introduced":"0"},{"last_affected":"2.4.0-p14"},{"introduced":"0"},{"last_affected":"2.4.0-p15"},{"introduced":"0"},{"last_affected":"2.4.0-p2"},{"introduced":"0"},{"last_affected":"2.4.0-p3"},{"introduced":"0"},{"last_affected":"2.4.0-p4"},{"introduced":"0"},{"last_affected":"2.4.0-p5"},{"introduced":"0"},{"last_affected":"2.4.0-p6"},{"introduced":"0"},{"last_affected":"2.4.0-p7"},{"introduced":"0"},{"last_affected":"2.4.0-p8"},{"introduced":"0"},{"last_affected":"2.4.0-p9"}]}}],"versions":["1.1.0beta17","v1.1.0","v1.1.10","v1.1.10b1","v1.1.10b2","v1.1.11i1","v1.1.11i2","v1.1.11i3","v1.1.11i4","v1.1.12","v1.1.12b1","v1.1.12b2","v1.1.13i1","v1.1.13i2","v1.1.13i3","v1.1.2","v1.1.3","v1.1.3b1","v1.1.4","v1.1.5i0","v1.1.5i1","v1.1.5i2","v1.1.5i3","v1.1.6","v1.1.6b2","v1.1.6b3","v1.1.7i1","v1.1.7i2","v1.1.7i3","v1.1.7i4","v1.1.7i5","v1.1.8","v1.1.8b1","v1.1.8b2","v1.1.8b3","v1.1.9i1","v1.1.9i2","v1.1.9i3","v1.1.9i4","v1.1.9i5","v1.1.9i6","v1.1.9i7","v1.1.9i8","v1.1.9i9","v1.2.0b1","v1.2.0b2","v1.2.0b3","v1.2.0b4","v1.2.0b5","v1.2.0b6","v1.2.0p1","v1.2.0p2","v1.2.0p3","v1.2.1i1","v1.2.1i2","v1.2.1i3","v1.2.1i4","v1.2.1i5","v1.2.2b1","v1.2.3i1","v1.2.3i2","v1.2.3i3","v1.2.3i4","v1.2.3i5","v1.2.3i6","v1.2.3i7","v1.2.5i1","v1.2.5i2","v1.2.5i3","v1.2.5i4","v1.2.5i5","v1.2.5i6","v1.2.7i1","v1.2.7i2","v1.2.7i3","v1.4.0i1","v1.4.0i2","v1.4.0i3","v1.5.0i1","v1.5.0i2","v1.5.0i3","v1.6.0b1","v2.0.0i1","v2.3.0-rc1","v2.3.0-rc2","v2.3.0b1","v2.3.0b1-rc1","v2.3.0b1-rc2","v2.3.0b2","v2.3.0b2-rc1","v2.3.0b3","v2.3.0b3-rc1","v2.3.0b4-rc1","v2.3.0b4-rc2","v2.3.0b5","v2.3.0b5-rc1","v2.3.0b6-rc1","v2.3.0p1","v2.3.0p1-rc1","v2.4.0","v2.4.0-rc1","v2.4.0b1-rc1","v2.4.0b2-rc1","v2.4.0b3","v2.4.0b3-rc1","v2.4.0b4","v2.4.0b4-rc1","v2.4.0b5","v2.4.0b5-rc1","v2.4.0b6","v2.4.0b6-rc1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-64996.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}]}