Lucene search
K

7 matches found

Debian
Debian
added 2024/10/03 6:5 p.m.124 views

[SECURITY] [DLA 3909-1] zabbix security update

Debian LTS Advisory DLA-3909-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 03, 2024 https://wiki.debian.org/LTS Package : zabbix Version : 1:5.0.44+dfsg-1+deb11u1 CVE ID : CVE-2022-23132 CVE-2022-23133 CVE-2022-24349 CVE-2022-24917 CVE-2022-24918...

9.9CVSS7.2AI score0.01606EPSS
Exploits2
OpenVAS
OpenVAS
added 2023/04/13 12:0 a.m.35 views

Debian: Security Advisory (DLA-3390-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.8AI score0.32304EPSS
Exploits2References4
Debian
Debian
added 2023/04/12 1:36 p.m.62 views

[SECURITY] [DLA 3390-1] zabbix security update

Debian LTS Advisory DLA-3390-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost April 12, 2023 https://wiki.debian.org/LTS Package : zabbix Version : 1:4.0.4+dfsg-1+deb10u1 CVE ID : CVE-2019-15132 CVE-2020-15803 CVE-2021-27927 CVE-2022-24349 CVE-2022-24917...

8.8CVSS6.5AI score0.32304EPSS
Exploits2
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2022:1254-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS5.3AI score0.01203EPSS
Exploits0References7
OSV
OSV
added 2022/04/19 7:12 a.m.9 views

SUSE-SU-2022:1254-1 Security update for zabbix

This update for zabbix fixes the following issues: - CVE-2022-24349: Fixed a reflected XSS in the action configuration window bsc1196944. - CVE-2022-24917: Fixed a reflected XSS in the service configuration window bsc1196945. - CVE-2022-24918: Fixed a reflected XSS in the item configuration windo...

4.6CVSS4.8AI score0.01203EPSS
Exploits0References9
CVE
CVE
added 2022/03/09 7:30 p.m.161 views

CVE-2022-24349

CVE-2022-24349: In Zabbix, an authenticated user can create a hosts group with a stored XSS payload that becomes available to other users. When users search groups (and similar vectors described in the Debian/SUSE advisories), the XSS payload can execute in the victim’s browser, enabling actions ...

4.6CVSS5AI score0.01203EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2022/03/09 7:30 p.m.28 views

CVE-2022-24349 Reflected XSS in action configuration window of Zabbix Frontend

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

4.6CVSS5.3AI score0.01203EPSS
Exploits0References6
Rows per page
Query Builder