Lucene search

Zabbix Security Vulnerabilities - 2020

cve

CVE-2013-3628

Zabbix 2.0.9 has an Arbitrary Command Execution Vulnerability

8.8CVSS

8.8AI Score

0.943EPSS

2020-02-07 03:15 PM

cve

CVE-2013-3738

A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequate sanitization of request strings in CGI scripts, which could let a remote malicious user execute arbitrary code.

9.8CVSS

9.5AI Score

0.012EPSS

2020-02-17 04:15 PM

cve

CVE-2020-11800

Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows remote attackers to execute arbitrary code.

9.8CVSS

9.6AI Score

0.029EPSS

2020-10-07 04:15 PM

147

cve

CVE-2020-15803

Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.

6.1CVSS

5.9AI Score

0.079EPSS

2020-07-17 03:15 AM

202