CVE-2025-27238 | Zabbix up to 7.0.13/7.2.7 API hostprototype.get information disclosure (WID-SEC-2025-2042)

A vulnerability was found in Zabbix up to 7.0.13/7.2.7 and classified as problematic. Impacted is the function hostprototype.get of the component API. Such manipulation leads to information disclosure.

This vulnerability is listed as CVE-2025-27238. The attack must be carried out from within the local network. There is no available exploit.VulDB Recent EntriesRead More