Vulnerabilities

CVE-2025-27234

by Fred · 12/09/2025

Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. In Zabbix 5.0 this allows for remote code execution.

More information : https://support.zabbix.com/browse/ZBX-26985

Similar

Tags: Cybersecurity Alert