Potential livestatus injection in notification test

Description

Livestatus injection in the notification test mode in Checkmk <2.5.0b4 and <2.4.0p26 allows an authenticated user with access to the notification test page to inject arbitrary Livestatus commands via a crafted service description.

Affected Products

Vendor	Product	Versions
checkmk	checkmk	2.5.0, 2.4.0

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
checkmk	checkmk	cert_advisory	90%

References

https://checkmk.com/werk/17989(vendor-advisory)

Related News (2 articles)

Tier B

BSI Advisories4h ago

[NEU] [mittel] Checkmk: Mehrere Schwachstellen

→ No new info (linked only)

Tier C

VulDB6h ago

CVE-2026-33456 | Checkmk up to 2.4.0p25/2.5.0b3 Notification Test Page delimiter

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

2.5.0b42.4.0p26

CWECWE-140

PublishedApr 10, 2026

Last enriched6h agov2

Trending Score60

Source articles2

Independent2

Info Completeness8/14

Missing: cvss, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Version History

Last enriched 6h ago

v2Tier C6h ago

Updated severity to HIGH, added affected versions 2.4.0p25 and 2.5.0b3, and noted that no exploit is available.

descriptionseverityaffectedVersionsactivelyExploited

via VulDB

v16h ago

Initial creation

Potential livestatus injection in notification test

Description

Affected Products

Also Affects

References

Related News (2 articles)

Community Vote

Related CVEs (5)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History