{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24096", "assignerOrgId": "f7d6281c-4801-44ce-ace2-493291dedb0f", "state": "PUBLISHED", "assignerShortName": "Checkmk", "dateReserved": "2026-01-21T14:39:24.128Z", "datePublished": "2026-04-01T10:07:21.670Z", "dateUpdated": "2026-04-01T12:37:04.819Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Checkmk", "vendor": "Checkmk GmbH", "versions": [{"lessThan": "2.5.0b2", "status": "affected", "version": "2.5.0b1", "versionType": "semver"}, {"lessThan": "2.4.0p25", "status": "affected", "version": "2.4.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "PS Positive Security GmbH"}], "descriptions": [{"lang": "en", "value": "Insufficient permission validation on multiple REST API Quick Setup endpoints in Checkmk 2.5.0 (beta) before version 2.5.0b2 and 2.4.0 before version 2.4.0p25 allows low-privileged users to perform unauthorized actions or obtain sensitive information"}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "CAPEC-180: Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"cvssV4_0": {"baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", "version": "4.0"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-280", "description": "CWE-280: Improper Handling of Insufficient Permissions or Privileges", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f7d6281c-4801-44ce-ace2-493291dedb0f", "shortName": "Checkmk", "dateUpdated": "2026-04-01T10:07:21.670Z"}, "references": [{"url": "https://checkmk.com/werk/18989"}], "title": "Insufficient permission validation on multiple REST API Quick Setup endpoints", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.5.0b1", "versionEndExcluding": "2.5.0b2"}, {"vulnerable": true, "criteria": "cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.4.0", "versionEndExcluding": "2.4.0p25"}]}]}], "x_generator": {"engine": "cvelib 1.8.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-01T12:36:52.848008Z", "id": "CVE-2026-24096", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T12:37:04.819Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-24096", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-01T12:36:52.848008Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T12:36:59.856Z"}}], "cna": {"title": "Insufficient permission validation on multiple REST API Quick Setup endpoints", "credits": [{"lang": "en", "type": "reporter", "value": "PS Positive Security GmbH"}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "CAPEC-180: Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"}}], "affected": [{"vendor": "Checkmk GmbH", "product": "Checkmk", "versions": [{"status": "affected", "version": "2.5.0b1", "lessThan": "2.5.0b2", "versionType": "semver"}, {"status": "affected", "version": "2.4.0", "lessThan": "2.4.0p25", "versionType": "semver"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://checkmk.com/werk/18989"}], "x_generator": {"engine": "cvelib 1.8.0"}, "descriptions": [{"lang": "en", "value": "Insufficient permission validation on multiple REST API Quick Setup endpoints in Checkmk 2.5.0 (beta) before version 2.5.0b2 and 2.4.0 before version 2.4.0p25 allows low-privileged users to perform unauthorized actions or obtain sensitive information"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-280", "description": "CWE-280: Improper Handling of Insufficient Permissions or Privileges"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "2.5.0b2", "versionStartIncluding": "2.5.0b1"}, {"criteria": "cpe:2.3:a:checkmk:checkmk:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "2.4.0p25", "versionStartIncluding": "2.4.0"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "f7d6281c-4801-44ce-ace2-493291dedb0f", "shortName": "Checkmk", "dateUpdated": "2026-04-01T10:07:21.670Z"}}}, "cveMetadata": {"cveId": "CVE-2026-24096", "state": "PUBLISHED", "dateUpdated": "2026-04-01T12:37:04.819Z", "dateReserved": "2026-01-21T14:39:24.128Z", "assignerOrgId": "f7d6281c-4801-44ce-ace2-493291dedb0f", "datePublished": "2026-04-01T10:07:21.670Z", "assignerShortName": "Checkmk"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:-:*:*:*:*:*:*", "matchCriteriaId": "022C075A-4B04-4141-A7D7-F93C9A7CE0FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b1:*:*:*:*:*:*", "matchCriteriaId": "60C00469-0CD1-4E9C-8370-CE113842056C", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b2:*:*:*:*:*:*", "matchCriteriaId": "179905FC-821F-4214-A872-E4E3702419D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b3:*:*:*:*:*:*", "matchCriteriaId": "04956994-D5A8-45EE-9DC2-8A1D3058CE8E", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b4:*:*:*:*:*:*", "matchCriteriaId": "8868449B-7259-4C3B-8344-0EFE0BA3A97E", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b5:*:*:*:*:*:*", "matchCriteriaId": "BBDF3A13-582F-43D2-B42F-0DC42D4FBFBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:b6:*:*:*:*:*:*", "matchCriteriaId": "DAF500B3-AA6A-4618-BC7E-0F214B795E0F", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p1:*:*:*:*:*:*", "matchCriteriaId": "1CFE68AB-1F57-497C-9229-29ED3A73D87F", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p10:*:*:*:*:*:*", "matchCriteriaId": "577F9F72-2FDA-4F87-A840-05158F2368B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p11:*:*:*:*:*:*", "matchCriteriaId": "6F3AD894-660B-41FC-B910-899A764A00B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p12:*:*:*:*:*:*", "matchCriteriaId": "21853BB4-1BB5-40E3-82E2-253899D898ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p13:*:*:*:*:*:*", "matchCriteriaId": "E7963D66-A89A-4167-A2BA-DFF89B439EAE", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p14:*:*:*:*:*:*", "matchCriteriaId": "42099281-2026-4507-A20B-C669C206ADB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p15:*:*:*:*:*:*", "matchCriteriaId": "29A44B1E-83CD-4A3D-AFFD-82AAC7760293", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p16:*:*:*:*:*:*", "matchCriteriaId": "B4B87192-D81E-4269-ABF3-8D700BB531B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p17:*:*:*:*:*:*", "matchCriteriaId": "3D35CD46-F8CF-49C3-8CD9-53E1ED038023", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p18:*:*:*:*:*:*", "matchCriteriaId": "D5B5649C-C0BA-4905-98DD-CA606DD2B886", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p19:*:*:*:*:*:*", "matchCriteriaId": "29148EA6-675F-4B35-81BF-B8254C1EB675", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p2:*:*:*:*:*:*", "matchCriteriaId": "B11306B4-1092-470C-BA87-DBD02A18A74B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p20:*:*:*:*:*:*", "matchCriteriaId": "9E85F65E-A103-425E-8AD5-7EE9F093B463", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p21:*:*:*:*:*:*", "matchCriteriaId": "65DF329A-4E2D-4138-99C5-6765789051CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p22:*:*:*:*:*:*", "matchCriteriaId": "1B9B340D-84F6-4CE9-A627-E26F340B3705", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p23:*:*:*:*:*:*", "matchCriteriaId": "CCAD0F84-7273-4FDF-B238-177E1C4D5F5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p24:*:*:*:*:*:*", "matchCriteriaId": "860D2E5C-6277-44F5-A3FE-C085F76B8514", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p3:*:*:*:*:*:*", "matchCriteriaId": "74F78C48-030A-48A1-B69E-04C4EA5CCC12", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p4:*:*:*:*:*:*", "matchCriteriaId": "8701A914-774B-4E3B-A651-4A9FD19A187A", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p5:*:*:*:*:*:*", "matchCriteriaId": "19E40054-C44D-4C4C-B077-0333D8201E5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p6:*:*:*:*:*:*", "matchCriteriaId": "0E2D2F49-32B2-42AA-B99E-7C39403CF104", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p7:*:*:*:*:*:*", "matchCriteriaId": "ACE440F8-EBF5-4DBB-A215-57D770C66219", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p8:*:*:*:*:*:*", "matchCriteriaId": "1A94395D-DDCE-4977-89CA-46F71C3CA2B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.4.0:p9:*:*:*:*:*:*", "matchCriteriaId": "9513876C-8DF0-4A59-864F-8401BAA43376", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkmk:checkmk:2.5.0:b1:*:*:*:*:*:*", "matchCriteriaId": "F8943BB3-1487-494C-B4EB-89EB0B18B6A2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Insufficient permission validation on multiple REST API Quick Setup endpoints in Checkmk 2.5.0 (beta) before version 2.5.0b2 and 2.4.0 before version 2.4.0p25 allows low-privileged users to perform unauthorized actions or obtain sensitive information"}], "id": "CVE-2026-24096", "lastModified": "2026-04-07T20:51:23.327", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security@checkmk.com", "type": "Secondary"}]}, "published": "2026-04-01T11:15:58.423", "references": [{"source": "security@checkmk.com", "tags": ["Vendor Advisory"], "url": "https://checkmk.com/werk/18989"}], "sourceIdentifier": "security@checkmk.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-280"}], "source": "security@checkmk.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[2.5.0b1,2.5.0b2)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[2.4.0,2.4.0p25)"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Checkmk", "source": "cna", "vendor": "Checkmk GmbH"}, "product": "checkmk", "vendor": "checkmk"}], "analysis": {"en": {"generated_at": "2026-04-07T23:39:23.467977+00:00", "value": {"mitigation_remediation": ["Update Checkmk to version 2.5.0b2 or later, or to 2.4.0p25 or newer to receive the fixed permission validation", "If an immediate upgrade is not possible, restrict external access to the Quick Setup API endpoints and enforce stricter permission checks on lower\u2011privilege accounts", "Verify that no residual Quick Setup endpoints remain exposed in the configuration by reviewing API documentation and access logs"], "summary": {"action": "Apply patch", "impact": "Unauthorized system changes or sensitive data exposure"}, "threat_synthesis": {"affected_systems": "Checkmk from Checkmk GmbH is affected. Versions include Checkmk 2.4.0 prior to patch 2.4.0p25 and Checkmk 2.5.0 beta before 2.5.0b2. Users running these versions are vulnerable when the Quick Setup APIs are exposed.", "description_and_impact": "The vulnerability arises from lacking proper permission checks on several Quick Setup REST API endpoints in Checkmk. A user with limited permissions can exploit this flaw to invoke operations intended for higher privilege users or to retrieve sensitive configuration data. This can lead to unauthorized actions and data disclosure, compromising the integrity and confidentiality of the monitored environment.", "risk_and_exploitability": "The CVSS base score of 5.3 indicates a moderate severity. EPSS indicates the probability of exploitation is below 1\u202f%. The vulnerability is not listed in CISA\u2019s KEV catalog. The likely attack vector is remote, via the public or internal API endpoints, requiring only authenticated access with a low\u2011privilege account. Exploitation would involve sending crafted requests to the Quick Setup endpoints to bypass permission checks."}}}}, "created": "2026-04-02T07:49:20.706991+00:00", "updated": "2026-04-08T19:59:54.521418+00:00", "vendors": ["checkmk", "checkmk$PRODUCT$checkmk"]}