This email has been sent from the Critical Vulnerabilities notification of the SURF/secops project.

2 vulnerabilities have been updated on 2025-10-14 between 15:00 and 15:59.

Unknown Severity Vulnerabilities (2)

CVE-2017-20201 - No CVSS v3.1

CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 (32-bit builds) contained a malicious pre-entry-point loader that diverts execution from __scrt_common_main_seh into a custom loader. That loader decodes an embedded...

CVE-2025-32919 - No CVSS v3.1

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows Agent allows Privilege Escalation. This issue affects Checkmk: from 2.4.0 before 2.4.0p13, from 2.3.0 before 2.3.0p38, from...