Vulnerability Details CVE-2023-32728
The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.9%
CVSS Severity
CVSS v3 Score 4.6
Products affected by CVE-2023-32728
-
cpe:2.3:a:zabbix:zabbix-agent2:5.0.0
-
cpe:2.3:a:zabbix:zabbix-agent2:5.0.35
-
cpe:2.3:a:zabbix:zabbix-agent2:6.0.0
-
cpe:2.3:a:zabbix:zabbix-agent2:6.0.18
-
cpe:2.3:a:zabbix:zabbix-agent2:6.4.0
-
cpe:2.3:a:zabbix:zabbix-agent2:6.4.3
-
cpe:2.3:a:zabbix:zabbix-agent2:7.0.0