Privilege Escalation in Checkmk mk_mysql Agent Plugin for Windows
CVE-2024-47091

5.2MEDIUM

Key Information:

Vendor: Checkmk Gmbh
Status: Checkmk
Vendor: CVE Published:; 13 May 2026

🔔 Create Checkmk Gmbh Vulnerability Alert

What is CVE-2024-47091?

A vulnerability exists in the mk_mysql agent plugin for Windows that allows a local unprivileged user to exploit it for privilege escalation. By creating a Windows service with a name that matches 'MySQL' or 'MariaDB', or having write access to a binary linked to such a service, an attacker can execute arbitrary code within the context of the Checkmk agent service, which typically operates with SYSTEM-level privileges. This vulnerability affects specific versions of Checkmk, underscoring the importance of updating to secure software releases.

Affected Version(s)

Checkmk 2.4.0 < 2.4.0p29

Checkmk 2.3.0 < 2.3.0p47

Checkmk 2.2.0

References

https://checkmk.com/werk/19198

vendor-advisory

CVSS V4

Score:

5.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2026
Vulnerability Reserved
Sep 18, 2024

CVE-2024-47091 Data

JSON