The Zabbix Agent 2 item key smart.disk.get does not...
Critical severity
Unreviewed
Published
Dec 22, 2023
to the GitHub Advisory Database
•
Updated Dec 22, 2023
Description
Published by the National Vulnerability Database
Dec 18, 2023
Published to the GitHub Advisory Database
Dec 22, 2023
Last updated
Dec 22, 2023
The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution.
References