Lucene search
K

10 matches found

OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-4767-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.83284EPSS
Exploits40References2
Ubuntu
Ubuntu
added 2022/06/15 8:28 a.m.270 views

USN-4767-1: Zabbix vulnerabilities

Fu Chuang discovered that Zabbix did not properly parse IPs. A remote attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. CVE-2020-11800 It was discovered that Zabbix incorrectly handled certain...

9.8CVSS7.7AI score0.83284EPSS
Exploits40
Gitee
Gitee
added 2021/04/15 8:29 p.m.13 views

Exploit for SQL Injection in Zabbix

This is an open-source collection of pre-built vulnerable docker environments. It is an offensive tool for web application security testing. The primary CVE IDs present in the context are CVE-2016-10134, CVE-2017-2824, and CVE-2020-11800. The target product/service or framework is not explicitly...

9.8CVSS6.8AI score0.83284EPSS
Exploits28
Gitee
Gitee
added 2021/02/23 3:46 p.m.2 views

Exploit for SQL Injection in Zabbix

This is an open-source collection of pre-built vulnerable docker environments. It is an offensive tool for web application security testing. The primary CVEs mentioned in the repository are CVE-2016-10134, CVE-2017-2824, and CVE-2020-11800. The target product/service or framework is not explicitl...

9.8CVSS7.1AI score0.83284EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2017/08/17 12:0 a.m.35 views

FreeBSD : Zabbix -- Remote code execution (5df8bd95-8290-11e7-93af-005056925db4)

mitre reports : An exploitable code execution vulnerability exists in the trapper command functionality of Zabbix Server 2.4.X. A specially crafted set of packets can cause a command injection resulting in remote code execution. An attacker can make requests from an active Zabbix Proxy to trigger...

8.1CVSS8.3AI score0.261EPSS
Exploits24References3
Tenable Nessus
Tenable Nessus
added 2017/08/14 12:0 a.m.45 views

Debian DSA-3937-1 : zabbix - security update

Lilith Wyatt discovered two vulnerabilities in the Zabbix network monitoring system which may result in execution of arbitrary code or database writes by malicious proxies. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

8.1CVSS7.8AI score0.261EPSS
Exploits26References4
Tenable Nessus
Tenable Nessus
added 2017/07/03 12:0 a.m.81 views

Fedora 25 : zabbix (2017-63aca509fb)

http://www.zabbix.com/rn3.0.8 - http://www.zabbix.com/rn3.0.9 - https://www.zabbix.com/documentation/3.0/manual/introduction/whatsnew308 - https://www.zabbix.com/documentation/3.0/manual/introduction/whatsnew309 Note that Tenable Network Security has extracted the preceding description block...

8.1CVSS7.6AI score0.261EPSS
Exploits24References3
CVE
CVE
added 2017/05/24 2:0 p.m.117 views

CVE-2017-2824

CVE-2017-2824 is an exploitable code execution in Zabbix Server 2.4.x via the trapper command. A crafted set of packets from an active Zabbix Proxy can trigger a command injection leading to remote code execution. Connected documents include exploit repositories for Zabbix vulnerabilities (e.g., ...

8.1CVSS8.4AI score0.261EPSS
Exploits24References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2017/05/22 12:0 a.m.8 views

Zabbix Server Active Proxy Trapper Command Injection (CVE-2017-2824)

A command injection vulnerability exists in Zabbix. The vulnerability is due to improper validation of user supplied input within the Trapper functionality of the server when the Auto-discovery or Auto-registration features are enabled. A remote, unauthenticated attacker could exploit this...

6.8CVSS2.7AI score0.261EPSS
Exploits24
myhack58
myhack58
added 2017/05/01 12:0 a.m.10226 views

Zabbix blast remote code execution vulnerability, a database written in a high-risk vulnerability-vulnerability warning-the black bar safety net

! About Zabbix zabbix is a WEB-based interface to provide distributed system monitoring and network monitoring capabilities of enterprise-class open source solutions. zabbix to monitor various network parameters, ensure that the server system of the security operations;and to provide flexible...

0.2AI score0.261EPSS
Exploits24
Rows per page
Query Builder