CVE-2026-23924

MEDIUM

Agent 2 Docker plugin arbitrary file read via Docker API injection

Title source: cna

Description

Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.container_info' parameters when forwarding them to the Docker daemon. An attacker capable of invoking Agent 2 can read arbitrary files from running Docker containers by injecting them via the Docker archive API.

References (1)

https://support.zabbix.com/browse/ZBX-27642

Scores

CVSS v4 6.1

EPSS 0.0006

EPSS Percentile 19.0%

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-88

Status published

Products (3)

Zabbix/Zabbix 6.0.0 - 6.0.43

Zabbix/Zabbix 7.0.0 - 7.0.22

Zabbix/Zabbix 7.4.0 - 7.4.6

Published Mar 24, 2026

Tracked Since Mar 25, 2026