CVE-2025-27234 — OS Command Injection in Zabbix

CWE-78 — OS Command Injection5 documents5 sources

Severity

7.3HIGHNVD

EPSS

0.1%

top 73.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Zabbix

Timeline

PublishedSep 12

Description

Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. In Zabbix 5.0 this allows for remote code execution.

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶Debianzabbix/zabbix< 1:5.0.47+dfsg-0+deb11u1+3

▶CVEListV5zabbix/zabbix5.0.0 — 5.0.46

🔴Vulnerability Details

OSV

CVE-2025-27234: Zabbix Agent 2 smartctl plugin does not properly sanitize smart↗2025-09-12

▶

CVEList

Zabbix Agent 2 smartctl plugin RCE vulnerability in Zabbix 5.0.↗2025-09-12

▶

GHSA

GHSA-x47p-6vx5-8v99: Zabbix Agent 2 smartctl plugin does not properly sanitize smart↗2025-09-12

▶

📋Vendor Advisories

Debian

CVE-2025-27234: zabbix - Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get paramet...↗2025

▶