What is the CVSS score of CVE-2025-27237?

CVE-2025-27237 has a CVSS 4.0 base score of 7.3 (High). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N. EPSS exploitation probability: 0.0%.

Which versions of Windows are affected by CVE-2025-27237?

CVE-2025-27237 presents moderate security risk, a DLL hijacking vulnerability rated CVSS 7.3. Exploitation could compromise the security of affected deployments.. A patch is available.

How to fix or mitigate CVE-2025-27237?

Within 7 days: Identify all affected systems and apply vendor patches promptly. Monitor vendor channels for patch availability.

Windows CVE-2025-27237

EUVD-2025-32535 HIGH

Uncontrolled Search Path Element (CWE-427)

2025-10-03 security@zabbix.com

Windows Privilege Escalation OpenSSL Debian Ubuntu

7.3

CVSS 4.0

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

EUVD ID Assigned

Mar 13, 2026 - 19:29 euvd

EUVD-2025-32535

Analysis Generated

Mar 13, 2026 - 19:29 vuln.today

CVE Published

Oct 03, 2025 - 12:15 nvd

HIGH 7.3

DescriptionNVD

In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL.

Analysis

Technical ContextAI

Privilege escalation allows a low-privileged user or process to gain elevated permissions beyond what was originally authorized. This vulnerability is classified as Uncontrolled Search Path Element (CWE-427).

RemediationAI

Apply the principle of least privilege. Keep systems patched. Monitor for suspicious privilege changes. Use mandatory access controls (SELinux, AppArmor).

More from same product – last 7 days

CVE-2026-47269 HIGH This Week

7.4 May 27

Authentication-context bypass in pam_usb before 0.9.0 lets a person holding an enrolled USB device authenticate over SSH

CVE-2026-47271 MEDIUM This Month

5.1 May 27

pam_usb prior to 0.9.0 crashes under memory pressure due to assert()-based OOM guards in src/mem.c that are silently str

CVE-2026-45898 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption by removin

CVE-2026-45924 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: ksmbd: call ksmbd_vfs_kern_path_end_removing() on s

CVE-2026-45965 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix invalid deref of rawdata when export_

Vendor StatusVendor

Ubuntu

Priority: Medium

zabbix

Release	Status	Version
trusty	not-affected	-
xenial	not-affected	-
bionic	not-affected	-
focal	not-affected	-
jammy	not-affected	-
noble	DNE	-
plucky	not-affected	-
upstream	not-affected	debian: Only affects Zabbix Agent and Agent2 on Windows

Debian

zabbix

Release	Status	Fixed Version	Urgency
bullseye	fixed	1:5.0.8+dfsg-1	-
bullseye (security)	fixed	1:5.0.47+dfsg-0+deb11u1	-
bookworm	fixed	1:6.0.14+dfsg-1	-
trixie	fixed	1:7.0.10+dfsg-2	-
forky, sid	fixed	1:7.0.22+dfsg-1	-
(unstable)	not-affected	-	-

CVE-2025-27237 vulnerability details – vuln.today

Back

Windows CVE-2025-27237

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

Analysis

Technical ContextAI

RemediationAI

More from same product – last 7 days

Vendor StatusVendor

Ubuntu

Debian

Share

External POC / Exploit Code