CVE-2024-47091

high

Published 2026-05-13 · Modified 2026-05-26

CVSS v3

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2

—

VIR risk

7.8

Description

Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and 2.2.0 (EOL) allows a local unprivileged user able to create a Windows service whose name matches 'MySQL' or 'MariaDB' (or with write access to a binary referenced by such a service) to execute arbitrary code in the context of the Checkmk agent service, which typically runs as SYSTEM.

Predictions

Exploit likelihood

75%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: security@checkmk.com — https://checkmk.com/werk/19198

Application impact

Vendor	Product	Versions
checkmk	checkmk	`2.2.0`
checkmk	checkmk	`2.3.0`
checkmk	checkmk	`2.4.0`

References

https://checkmk.com/werk/19198

CWEs

CWE-427

Verify integrity in audit chain (admin only). AS-IS.