Due to a bug in Zabbix API, the hostprototype.get method lists all host prototypes to users that do not have any user groups assigned to them.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://support.zabbix.com/browse/ZBX-26988 |
Configurations
No configuration.
History
15 Sep 2025, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-284 |
12 Sep 2025, 11:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-09-12 11:15
Updated : 2025-09-15 19:15
NVD link : CVE-2025-27238
Mitre link : CVE-2025-27238
CVE.ORG link : CVE-2025-27238
JSON object : View
Products Affected
No product.
CWE
CWE-284
Improper Access Control