Lucene search
K

9 matches found

Debian
Debian
added 2024/10/03 6:5 p.m.63 views

[SECURITY] [DLA 3909-1] zabbix security update

Debian LTS Advisory DLA-3909-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 03, 2024 https://wiki.debian.org/LTS Package : zabbix Version : 1:5.0.44+dfsg-1+deb11u1 CVE ID : CVE-2022-23132 CVE-2022-23133 CVE-2022-24349 CVE-2022-24917 CVE-2022-24918...

9.9CVSS7.2AI score0.01606EPSS
Exploits2
OpenVAS
OpenVAS
added 2023/04/13 12:0 a.m.35 views

Debian: Security Advisory (DLA-3390-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.8AI score0.32304EPSS
Exploits2References4
Debian
Debian
added 2023/04/12 1:36 p.m.61 views

[SECURITY] [DLA 3390-1] zabbix security update

Debian LTS Advisory DLA-3390-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost April 12, 2023 https://wiki.debian.org/LTS Package : zabbix Version : 1:4.0.4+dfsg-1+deb10u1 CVE ID : CVE-2019-15132 CVE-2020-15803 CVE-2021-27927 CVE-2022-24349 CVE-2022-24917...

8.8CVSS6.5AI score0.32304EPSS
Exploits2
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2022:1254-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS5.3AI score0.00779EPSS
Exploits0References7
OSV
OSV
added 2022/04/19 7:12 a.m.8 views

SUSE-SU-2022:1254-1 Security update for zabbix

This update for zabbix fixes the following issues: - CVE-2022-24349: Fixed a reflected XSS in the action configuration window bsc1196944. - CVE-2022-24917: Fixed a reflected XSS in the service configuration window bsc1196945. - CVE-2022-24918: Fixed a reflected XSS in the item configuration windo...

4.6CVSS4.8AI score0.00779EPSS
Exploits0References9
Circl
Circl
added 2022/03/09 10:15 p.m.4 views

CVE-2022-24917

creationtimestamp| type| source ---|---|--- 2022-03-09 22:15:18+00:00| seen| https://t.me/cibsecurity/38627...

4.4CVSS5.3AI score0.00779EPSS
Exploits0References1
OSV
OSV
added 2022/03/09 8:15 p.m.8 views

CVE-2022-24917

An authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all...

4.4CVSS5.8AI score
Exploits0References7
Cvelist
Cvelist
added 2022/03/09 7:30 p.m.16 views

CVE-2022-24917 Reflected XSS in service configuration window of Zabbix Frontend

An authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all...

3.7CVSS5.5AI score0.00779EPSS
Exploits0References6
CVE
CVE
added 2022/03/09 7:30 p.m.123 views

CVE-2022-24917

The CVE-2022-24917 describes an authenticated-user cross-site scripting issue in Zabbix frontend: an attacker can generate a link containing reflected Javascript on a services page and persuade other users to open it. The payload executes only if the victim’s CSRF token value (which is periodical...

4.4CVSS5AI score0.00779EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder