Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-4767-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.83284EPSS
Exploits40References2
Ubuntu
Ubuntu
added 2022/06/15 8:28 a.m.270 views

USN-4767-1: Zabbix vulnerabilities

Fu Chuang discovered that Zabbix did not properly parse IPs. A remote attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. CVE-2020-11800 It was discovered that Zabbix incorrectly handled certain...

9.8CVSS7.7AI score0.83284EPSS
Exploits40
NVD
NVD
added 2018/04/20 9:29 p.m.25 views

CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS7.2AI score0.04385EPSS
Exploits2References3
CVE
CVE
added 2018/04/20 9:0 p.m.89 views

CVE-2017-2825

CVE-2017-2825 affects Zabbix Server 2.4.x in the trapper functionality. Specifically crafted trapper packets can bypass database logic checks, leading to unauthorized database writes. An attacker could leverage a MitM position to modify trapper requests between an active Zabbix proxy and the Serv...

7CVSS7AI score0.04385EPSS
Exploits2References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/08/14 12:0 a.m.45 views

Debian DSA-3937-1 : zabbix - security update

Lilith Wyatt discovered two vulnerabilities in the Zabbix network monitoring system which may result in execution of arbitrary code or database writes by malicious proxies. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

8.1CVSS7.8AI score0.261EPSS
Exploits26References4
seebug.org
seebug.org
added 2017/04/28 12:0 a.m.58 views

Zabbix Proxy Server SQL Database Write Vulnerability (CVE-2017-2825)

Official patch earlier to fix the vulnerabilities: the Zabbix code execution vulnerability DETAILS One of the Trapper requests made by the Zabbix proxy is the ìproxy configî request, which allows a proxy to request its own proxy configuration from the Zabbix Server or any other Zabbix Proxyís...

7.8AI score0.04385EPSS
Exploits2
Rows per page
Query Builder