CVE-2011-4674

🗓️ 02 Dec 2011 18:00:00Reported by Debian Security Bug TrackerType

debiancve

debiancve🔗 security-tracker.debian.org👁 24 Views

SQL injection vulnerability in Zabbix 1.8.3 and 1.8.

Reporter	Title	Published	Views	Family All 22
Circl	CVE-2011-4674	24 Nov 201100:00	–	circl
CVE	CVE-2011-4674	2 Dec 201118:00	–	cve
Cvelist	CVE-2011-4674	2 Dec 201118:00	–	cvelist
Dsquare	Zabbix <= 1.8.4 SQL Injection	5 Jul 201200:00	–	dsquare
EUVD	EUVD-2011-4592	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 15 Update: zabbix-1.8.9-1.fc15	11 Dec 201121:51	–	fedora
Fedora	[SECURITY] Fedora 16 Update: zabbix-1.8.9-1.fc16	11 Dec 201121:49	–	fedora
Tenable Nessus	Fedora 15 : zabbix-1.8.9-1.fc15 (2011-16712)	12 Dec 201100:00	–	nessus
Tenable Nessus	Fedora 16 : zabbix-1.8.9-1.fc16 (2011-16745)	12 Dec 201100:00	–	nessus
Tenable Nessus	GLSA-201311-15 : Zabbix: Multiple vulnerabilities	26 Nov 201300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	11	any	zabbix	1:1.8.9-1	zabbix_1:1.8.9-1_any.deb
Debian	12	any	zabbix	1:1.8.9-1	zabbix_1:1.8.9-1_any.deb
Debian	13	any	zabbix	1:1.8.9-1	zabbix_1:1.8.9-1_any.deb
Debian	14	any	zabbix	1:1.8.9-1	zabbix_1:1.8.9-1_any.deb
Debian	999	any	zabbix	1:1.8.9-1	zabbix_1:1.8.9-1_any.deb

02 Dec 2011 18:00Current

7.2High risk

Vulners AI Score7.2

CVSS 27.5

EPSS0.02549

cve-2011-4674 zabbix sql injection php remote attackers arbitrary sql commands only_hostid parameter unix