Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4.0p13, <2.3.0p38, <2.2.0p46, and 2.1.0 (EOL) may cause sensitive form data to be included in URL query parameters, which may be logged in various places such as browser history or web server logs.
Metrics
Affected Vendors & Products
No data.
No data.
No data.
No data.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://checkmk.com/werk/17105 |
|
History
Thu, 09 Oct 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4.0p13, <2.3.0p38, <2.2.0p46, and 2.1.0 (EOL) may cause sensitive form data to be included in URL query parameters, which may be logged in various places such as browser history or web server logs. | |
| Title | Sensitive form data in URL query parameters | |
| Weaknesses | CWE-598 | |
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: Checkmk
Published:
Updated: 2025-10-09T15:00:58.720Z
Reserved: 2025-04-14T09:52:19.273Z
Link: CVE-2025-32916
Vulnrichment
No data.
NVD
Status : Awaiting Analysis
Published: 2025-10-09T15:16:05.503
Modified: 2025-10-09T15:50:04.013
Link: CVE-2025-32916
Redhat
No data.
OpenCVE Enrichment
No data.