Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-1277HistoryApr 06, 2010 - 4:30 p.m.
CVE-2010-1277
2010-04-0616:30:00
Debian Security Bug Tracker
security-tracker.debian.org
10
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
78.4%
SQL injection vulnerability in the user.authenticate method in the API in Zabbix 1.8 before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the user parameter in JSON data to api_jsonrpc.php.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | zabbix | < 1:1.8.2-1 | zabbix_1:1.8.2-1_all.deb |
| Debian | 11 | all | zabbix | < 1:1.8.2-1 | zabbix_1:1.8.2-1_all.deb |
| Debian | 999 | all | zabbix | < 1:1.8.2-1 | zabbix_1:1.8.2-1_all.deb |
| Debian | 13 | all | zabbix | < 1:1.8.2-1 | zabbix_1:1.8.2-1_all.deb |
Related
cve
cve
CVE-2010-1277
2010-04-06 16:30:00
CVE-2010-1144
2022-10-03 16:21:01
cvelist
cvelist
CVE-2010-1277
2010-04-06 16:00:00
ubuntucve
ubuntucve
CVE-2010-1277
2010-04-06 00:00:00
openvas
openvas
Zabbix < 1.8.2 SQLi Vulnerability
2010-04-12 00:00:00
Gentoo Security Advisory GLSA 201311-15
2015-09-29 00:00:00
prion
prion
Sql injection
2010-04-06 16:30:00
Design/Logic Flaw
2010-04-06 16:30:00
nvd
nvd
CVE-2010-1277
2010-04-06 16:30:00
CVE-2010-1144
2010-04-06 16:30:00
nessus
nessus
GLSA-201311-15 : Zabbix: Multiple vulnerabilities
2013-11-26 00:00:00
gentoo
gentoo
Zabbix: Multiple vulnerabilities
2013-11-25 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.006 Low
EPSS
Percentile
78.4%
Related for DEBIANCVE:CVE-2010-1277