12 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-22119
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cause of vulnerability is improper validation of form input field Name on Graph page in Items section. CVE-2024-22119 Note that Nessus relies on the presenc...
SUSE: Security Advisory (SUSE-SU-2024:0862-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3798 : zabbix-agent - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3798 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3798-1 [email protected] https://www.debian.org/lts/security/...
SUSE SLES12 Security Update : zabbix (SUSE-SU-2024:0862-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0862-1 advisory. - CVE-2024-22119: Fixed ability to run XSS in graph item names bsc1219775. Tenable has extracted the preceding description block directly fr...
SUSE-SU-2024:0862-1 Security update for zabbix
This update for zabbix fixes the following issues: - CVE-2024-22119: Fixed ability to run XSS in graph item names bsc1219775...
openSUSE Security Advisory (openSUSE-SU-2024:0064-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : zabbix (openSUSE-SU-2024:0064-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0064-1 advisory. - The cause of vulnerability is improper validation of form input field Name on Graph page in Items section. CVE-2024-22119 Note that Nessus has not test...
OPENSUSE-SU-2024:0064-1 Security update for zabbix
This update for zabbix fixes the following issues: - CVE-2024-22119: Fixed a stored XSS in graph items select form boo1219775...
Security update for zabbix (moderate)
openSUSE Security Update: Security update for zabbix Announcement ID: openSUSE-SU-2024:0064-1 Rating: moderate References: 1219775 Cross-References: CVE-2024-22119 CVSS scores: CVE-2024-22119 NVD : 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVE-2024-22119 SUSE: 5.4...
CVE-2024-22119 Stored XSS in graph items select form
The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section...
CVE-2024-22119
CVE-2024-22119 is a stored XSS in Zabbix frontend’s graph items select form caused by improper validation of the Graph page Name field in Items. Connected advisories confirm the issue affects multiple Linux distributions (Debian, SUSE/openSUSE, AstraLinux, etc.) and report fixes in various releas...
CVE-2024-22119 Stored XSS in graph items select form
The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section...