[Git][security-tracker-team/security-tracker][master] Add CVE-2025-27238/zabbix

Fri, 12 Sep 2025 14:19:28 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
200c8be7 by Salvatore Bonaccorso at 2025-09-12T23:18:41+02:00
Add CVE-2025-27238/zabbix

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,7 +41,9 @@ CVE-2025-43787 (A Stored cross-site scripting vulnerability 
in the Liferay Porta
 CVE-2025-27240 (A Zabbix adminitrator can inject arbitrary SQL during the 
autoremoval  ...)
        TODO: check
 CVE-2025-27238 (Due to a bug in Zabbix API, the hostprototype.get method lists 
all hos ...)
-       TODO: check
+       - zabbix <unfixed>
+       NOTE: https://support.zabbix.com/browse/ZBX-26988
+       NOTE: Fixed in 7.0.14, 7.2.8
 CVE-2025-27234 (Zabbix Agent 2 smartctl plugin does not properly sanitize 
smart.disk.g ...)
        - zabbix 1:6.0.7+dfsg-2
        NOTE: https://support.zabbix.com/browse/ZBX-26985



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/200c8be7cbb6722748ea7d7524b57fd43838f5a1

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/200c8be7cbb6722748ea7d7524b57fd43838f5a1
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to