Lucene search
K

6 matches found

OSV
OSV
added 2026/05/06 8:16 a.m.4 views

UBUNTU-CVE-2026-23928

The Item history widget in Zabbix 7.0+ or the Plain text widget in Zabbix 6.0 can execute injected JavaScript when HTML display is enabled. This can allow an attacker to perform unauthorized actions depending on which user opens a dashboard containing these widgets. The malicious JavaScript would...

7.3CVSS5.9AI score0.00285EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:0 a.m.4 views

CVE-2026-23928

The Item history widget in Zabbix 7.0+ or the Plain text widget in Zabbix 6.0 can execute injected JavaScript when HTML display is enabled. This can allow an attacker to perform unauthorized actions depending on which user opens a dashboard containing these widgets. The malicious JavaScript would...

7.3CVSS5.9AI score0.00285EPSS
Exploits0References2Affected Software1
Redos
Redos
added 2026/04/17 12:0 a.m.7 views

ROS-20260417-73-0037

Vulnerability in zabbix7-lts is related to failure to take measures to neutralize special elements used in operating system commands. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary commands...

7.7CVSS6.1AI score0.00248EPSS
Exploits0
Redos
Redos
added 2026/04/17 12:0 a.m.7 views

ROS-20260417-73-0041

Vulnerability in zabbix7-lts related to providing a data element for an erroneous session. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

7.1CVSS5.8AI score0.00154EPSS
Exploits0
Redos
Redos
added 2026/04/17 12:0 a.m.5 views

ROS-20260417-73-0042

Vulnerability in zabbix7.2 related to providing a data element for an erroneous session. Exploitation of the vulnerability may allow an attacker to escalate his privileges...

7.1CVSS5.8AI score0.00154EPSS
Exploits0
Redos
Redos
added 2026/04/01 12:0 a.m.3 views

ROS-20260401-73-0049

Vulnerability in zabbix7-lts related to a flaw in the authorization mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

8.1CVSS5.9AI score0.00255EPSS
Exploits0
Rows per page
Query Builder