CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в zabbix

The Zabbix Agent 2 smartctl plugin does not properly sanitize the parameters of the smart.disk.get command, allowing an attacker to inject unexpected arguments into the smartctl command. In Zabbix 5.0, this allows for remote code execution...

7.3CVSS6.1AI score0.00164EPSS

Exploits0References2

Debian•added 2026/02/08 4:13 p.m.•6 views

[SECURITY] [DLA 4473-1] zabbix security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4473-1 [email protected] https://www.debian.org/lts/security/ Bastien RoucariÃ¨s February 08, 2026 https://wiki.debian.org/LTS -...

7.3CVSS5.8AI score0.00164EPSS

Exploits0

Tenable Nessus•added 2026/02/08 12:0 a.m.•2 views

Debian dla-4473 : zabbix-agent - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4473 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4473-1 [email protected] https://www.debian.org/lts/security/...

7.3CVSS6.1AI score0.00164EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-29036

Malicious code in bioql PyPI...

7.3CVSS6.3AI score0.00164EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-29035

Malicious code in bioql PyPI...

5.7CVSS6.3AI score0.00039EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-0358

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00351EPSS

Exploits1References4

RedhatCVE•added 2025/09/14 11:22 a.m.•8 views

CVE-2025-27234

Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. In Zabbix 5.0 this allows for remote code execution...

7.3CVSS7.5AI score0.00164EPSS

Exploits0References1

RedhatCVE•added 2025/09/14 11:22 a.m.•8 views

CVE-2025-27233

Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. This can be used to leak the NTLMv2 hash from a Windows system...

5.7CVSS6.6AI score0.00039EPSS

Exploits0References1

Tenable Nessus•added 2025/09/14 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-27234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl...

7.3CVSS5.6AI score0.00164EPSS

Exploits0References2

Tenable Nessus•added 2025/09/14 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-27233

5.7CVSS5.8AI score0.00039EPSS

Exploits0References3

Snyk•added 2025/09/12 11:42 a.m.•1 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via improper sanitization of parameters in the smart.disk.get process. An attacker can inject arbitrary arguments into the smartctl command by supplying crafted input, potentially leading to the exposure of...

5.7CVSS7.3AI score0.00039EPSS

Exploits0References2