A vulnerability labeled as problematic has been found in Checkmk up to 2.2.0/2.3.0p47/2.4.0p30/2.5.0p4 . This affects an unknown function of the component Service Discovery . Executing a manipulation can lead to cross site scripting. This vulnerability is registered as CVE-2026-9549 . It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.