Zabbix@1.8.18 Security Vulnerabilities and Issues — Zabbix@1.8.18 CVE List

Lucene search

ZabbixZabbix1.8.18

3 matches found

CVE•added 2018/02/01 5:29 p.m.•76 views

CVE-2014-3005

XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x before 2.3.2 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.

9.8CVSS9.3AI score0.04287EPSS

CVE•added 2014/05/08 2:29 p.m.•63 views

CVE-2014-1682

The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 allows remote authenticated users to spoof arbitrary users via the user name in a user.login request.

4CVSS8.6AI score0.00252EPSS

CVE•added 2014/05/08 2:29 p.m.•49 views

CVE-2014-1685

The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and 2.2.x before 2.2.2rc1 allows remote "Zabbix Admin" users to modify the media of arbitrary users via unspecified vectors.

5.5CVSS9.1AI score0.00394EPSS