Lucene search
K

6 matches found

OSV
OSV
added 2014/05/08 2:29 p.m.10 views

CVE-2014-1682

The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 allows remote authenticated users to spoof arbitrary users via the user name in a user.login request...

6AI score
Exploits0References4
CVE
CVE
added 2014/05/08 2:0 p.m.76 views

CVE-2014-1682

The CVE concerns Zabbix API authentication: versions 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 expose a user impersonation flaw in user.login. An authenticated remote user can spoof arbitrary users by supplying a crafted username, potentially enabling privilege abuse or misrepr...

4CVSS8.6AI score0.01568EPSS
Exploits0References4Affected Software2
OpenVAS
OpenVAS
added 2014/05/05 12:0 a.m.24 views

Fedora Update for zabbix FEDORA-2014-5540

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.04111EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2014/05/05 12:0 a.m.23 views

Fedora Update for zabbix FEDORA-2014-5551

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.79988EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2014/05/02 12:0 a.m.33 views

Fedora 19 : zabbix-2.0.11-3.fc19 (2014-5551)

The logrotate configuration had no su statement in 2.0.11-2. Furthermore, the log file should have been created as zabbixsrv:zabbix for the proxy and server, what they are now. http://www.zabbix.com/rn2.0.11.php Also solves 3 security issues : - ZBX-7703 fixed being able to switch users without...

5.5CVSS5.4AI score0.04111EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2014/05/02 12:0 a.m.29 views

Fedora 20 : zabbix-2.0.11-3.fc20 (2014-5540)

The logrotate configuration had no su statement in 2.0.11-2. Furthermore, the log file should have been created as zabbixsrv:zabbix for the proxy and server, what they are now. http://www.zabbix.com/rn2.0.11.php Also solves 3 security issues : - ZBX-7703 fixed being able to switch users without...

5.5CVSS5.4AI score0.04111EPSS
Exploits4References7
Rows per page
Query Builder