HomePentest-Tools.com Logo

Check MK Agent < 1.6.0p17 Privilege Escalation Vulnerability CVE-2020-24908

Severity
CVSSv3 Score
7.8
Vulnerability description

Check MK Agent is prone to a privilege escalation vulnerability on Windows.

Risk description

Check MK Agent allows local users to obtain SYSTEM privileges via a Trojan horse shell script in the %PROGRAMDATA%\checkmk\agent\local directory.

Recommendation

Update to version 1.6.0p17 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Feb 19, 2021
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available