3 matches found
Exploit for Authorization Bypass Through User-Controlled Key in Zabbix
CVE-2019-17382 - Zabbix Authentication Bypass A critical vuln...
The vulnerability of the Zabbix universal monitoring system, related to bypassing authentication by using a user-controlled key, allows a intruder to circumvent the login page and gain access to the dashboard page.
The vulnerability of the Zabbix universal monitoring system relates to bypassing authentication by using a key controlled by the user. Exploiting this vulnerability allows a malicious actor to bypass the login page, gain access to the dashboard, and then create a monitoring panel, report, screen,...
DEBIAN-CVE-2019-17382
An issue was discovered in zabbix.php?action=dashboard.view&dashboardid=1 in Zabbix through 4.4. An attacker can bypass the login page and access the dashboard page, and then create a Dashboard, Report, Screen, or Map without any Username/Password i.e., anonymously. All created elements...