back to website

Werk #11460: Windows agent service sets correct access rights in ProgramData directory

Component Checks & agents
Title Windows agent service sets correct access rights in ProgramData directory
Date Aug 25, 2020
Level Prominent Change
Class Security Fix
Compatibility Compatible - no manual interaction needed
Checkmk versions & editions
2.0.0i1 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.6.0p17 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)

Previously, a standard user can write in ProgramData/checkmk/agent directory, thereby getting a possibility to modify sensitive information.

With this fix the above mentioned vulnerability is eliminated: a standard user has a right to read and execute.

For more information have a look at the advisory page.

To the list of all Werks

The Checkmk logo (formerly known as Check_MK) is a trademark of Checkmk GmbH. ©2025 Checkmk GmbH. All rights reserved.

Join our hybrid Monitoring Community event from May 20-22 in Munich and learn more about the latest Checkmk features and our roadmap at the Checkmk Conference #11

Register now