Explore the latest product updates and best practices at our hybrid Checkmk Conference #12 from June 16-18, 2026 – Register here
back to website

Werk #19035: NagVis: Updated to 1.9.48

Component Other components
Title NagVis: Updated to 1.9.48
Date Dec 2, 2025
Level Trivial Change
Class Security Fix
Compatibility Compatible - no manual interaction needed
Checkmk versions & editions
2.5.0b1
Not yet released 		Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.4.0p18 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.3.0p42 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)

NagVis has been updated to version 1.9.48.

This update contains fixes for the following security issue:

User enumeration and Cleanup CMK session cookie validation:

  • CVE-2025-39665
  • rated with CVSS score 6.9 Medium (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N)

See also https://www.nagvis.org/downloads/changelog/1.9.48.

The issue was discovered during an internal review.

Affected Checkmk versions:

  • 2.4.0
  • 2.3.0
  • 2.2.0 (EOL)

To the list of all Werks