{"uuid": "5fd08047-e24b-450f-9670-a50fb1b4dd4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-32917", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16111", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-32917\n\ud83d\udd25 CVSS Score: 5.2 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: Privilege escalation in jar_signature agent plugin in Checkmk versions <2.4.0b7 (beta), <2.3.0p32, <2.2.0p42, and 2.1.0p49 (EOL) allow user with write access to JAVA_HOME/bin directory to escalate privileges.\n\ud83d\udccf Published: 2025-05-13T10:45:31.406Z\n\ud83d\udccf Modified: 2025-05-13T10:45:31.406Z\n\ud83d\udd17 References:\n1. https://checkmk.com/werk/17985", "creation_timestamp": "2025-05-13T11:29:46.000000Z"}