CVE-2025-27233

Name
CVE-2025-27233
Description
Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. This can be used to leak the NTLMv2 hash from a Windows system.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
security@zabbix.com https://support.zabbix.com/browse/ZBX-26987

Match rules

CPE URI Source package Min version Max version
zabbix >= 6.0.0 <= 6.0.39
zabbix >= 7.0.0 <= 7.0.10
zabbix >= 7.2.0 <= 7.2.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
zabbix edge-community 7.0.1-r0 Kevin Daudt <kdaudt@alpinelinux.org> possibly vulnerable
zabbix 3.22-community 7.0.1-r0 None possibly vulnerable