This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Zabbix First view 2009-12-31
Product Zabbix Last view 2024-08-12
Version 1.6.9 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:zabbix:zabbix

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
8.8 2024-08-12 CVE-2024-36461

Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine.

8.1 2024-08-12 CVE-2024-36460

The front-end audit log allows viewing of unprotected plaintext passwords, where the passwords are displayed in plain text.

2.7 2024-08-12 CVE-2024-22123

Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbix_server will try to communicate with it as modem. As a result, log file will be broken with AT commands and small part for log file content will be leaked to UI.

9.1 2024-08-12 CVE-2024-22122

Zabbix allows to configure SMS notifications. AT command injection occurs on "Zabbix Server" because there is no validation of "Number" field on Web nor on Zabbix server side. Attacker can run test of SMS providing specially crafted phone number and execute additional AT commands on modem.

6.1 2024-08-12 CVE-2024-22121

A non-admin user can change or remove important features within the Zabbix Agent application, thus impacting the integrity and availability of the application.

7.2 2024-08-12 CVE-2024-22116

An administrator with restricted permissions can exploit the script execution functionality within the Monitoring Hosts section. The lack of default escaping for script parameters enabled this user ability to execute arbitrary code via the Ping script, thereby compromising infrastructure.

4.3 2024-08-12 CVE-2024-22114

User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.

5.4 2024-02-09 CVE-2024-22119

The cause of vulnerability is improper validation of form input field “Name†on Graph page in Items section.

8.8 2023-10-12 CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation.

9.1 2023-10-12 CVE-2023-32723

Request to LDAP is sent before user permissions are checked.

7.8 2023-10-12 CVE-2023-32722

The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbx_json_open.

5.4 2023-10-12 CVE-2023-32721

A stored XSS has been found in the Zabbix web application in the Maps element if a URL field is set with spaces before URL.

5.4 2023-07-13 CVE-2023-29452

Currently, geomap configuration (Administration -> General -> Geographical maps) allows using HTML in the field “Attribution text†when selected “Other†Tile provider.

7.5 2023-07-13 CVE-2023-29451

Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy.

7.5 2023-07-13 CVE-2023-29450

JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unauthorized access to sensitive data.

4.9 2023-07-13 CVE-2023-29449

JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and disk I/O utilization. Preprocessing/webhook/global script configuration and testing are only available to Administrative roles (Admin and Superadmin). Administrative privileges should be typically granted to users who need to perform tasks that require more control over the system. The security risk is limited because not all users have this level of access.

9.8 2022-12-05 CVE-2022-43516

A Firewall Rule which allows all incoming TCP connections to all programs from any source and to all ports is created in Windows Firewall after Zabbix agent installation (MSI)

6.1 2022-09-14 CVE-2022-40626

An unauthenticated user can create a link with reflected Javascript code inside the backurl parameter and send it to other authenticated users in order to create a fake account with predefined login, password and role in Zabbix Frontend.

5.4 2022-07-06 CVE-2022-35230

An authenticated user can create a link with reflected Javascript code inside it for the graphs page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict.

5.4 2022-07-06 CVE-2022-35229

An authenticated user can create a link with reflected Javascript code inside it for the discovery page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict.

7.2 2022-01-27 CVE-2021-46088

Zabbix 4.0 LTS, 4.2, 4.4, and 5.0 LTS is vulnerable to Remote Code Execution (RCE). Any user with the "Zabbix Admin" role is able to run custom shell script on the application server in the context of the application user.

5.3 2022-01-13 CVE-2022-23134

After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well. Malicious actor can pass step checks and potentially change the configuration of Zabbix Frontend.

5.4 2022-01-13 CVE-2022-23133

An authenticated user can create a hosts group from the configuration with XSS payload, which will be available for other users. When XSS is stored by an authenticated malicious actor and other users try to search for groups during new host creation, the XSS payload will fire and the actor can steal session cookies and perform session hijacking to impersonate users or take over their accounts.

7.3 2022-01-13 CVE-2022-23132

During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. In this case, Zabbix Proxy or Server processes can bypass file read, write and execute permissions check on the file system level

9.8 2022-01-13 CVE-2022-23131

In the case of instances where the SAML SSO authentication is enabled (non-default), session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to Zabbix Frontend. To perform the attack, SAML authentication is required to be enabled and the actor has to know the username of Zabbix user (or use the guest account, which is disabled by default).

CWE : Common Weakness Enumeration

%idName
27% (12) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (5) CWE-89 Improper Sanitization of Special Elements used in an SQL Command ('...
6% (3) CWE-732 Incorrect Permission Assignment for Critical Resource
6% (3) CWE-287 Improper Authentication
6% (3) CWE-94 Failure to Control Generation of Code ('Code Injection')
4% (2) CWE-787 Out-of-bounds Write
4% (2) CWE-281 Improper Preservation of Permissions
4% (2) CWE-200 Information Exposure
2% (1) CWE-770 Allocation of Resources Without Limits or Throttling
2% (1) CWE-639 Access Control Bypass Through User-Controlled Key
2% (1) CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
2% (1) CWE-552 Files or Directories Accessible to External Parties
2% (1) CWE-522 Insufficiently Protected Credentials
2% (1) CWE-399 Resource Management Errors
2% (1) CWE-352 Cross-Site Request Forgery (CSRF)
2% (1) CWE-290 Authentication Bypass by Spoofing
2% (1) CWE-203 Information Exposure Through Discrepancy
2% (1) CWE-78 Improper Sanitization of Special Elements used in an OS Command ('O...
2% (1) CWE-77 Improper Sanitization of Special Elements used in a Command ('Comma...

Open Source Vulnerability Database (OSVDB)

id Description
78087 Zabbix hosts.php Update Action XSS
78086 Zabbix maintenance.php Update Action XSS
78085 Zabbix scripts.php Update Action XSS
77772 Zabbix Profiler Unspecified XSS
77771 Zabbix hostgroups.php gname Parameter XSS
74667 Zabbix zabbix_agentd vfs.file.cksum Command CPU Consumption DoS
74665 Zabbix popup.php srcfld2 Parameter Error Message Path Disclosure
74663 Zabbix popup.php srctbl Parameter Arbitrary Database Table Access
74275 Zabbix acknow.php backurl Parameter XSS
66647 Zabbix frontends/php/include/classes/class.curl.php Multiple Parameter XSS
65276 Zabbix events.php nav_time Parameter SQL Injection
60965 ZABBIX node_process_command() Function Crafted Request Arbitrary Command Exec...

OpenVAS Exploits

id Description
2012-09-15 Name : Debian Security Advisory DSA 2539-1 (zabbix)
File : nvt/deb_2539_1.nasl
2012-09-04 Name : Fedora Update for zabbix FEDORA-2012-12488
File : nvt/gb_fedora_2012_12488_zabbix_fc16.nasl
2012-09-04 Name : Fedora Update for zabbix FEDORA-2012-12496
File : nvt/gb_fedora_2012_12496_zabbix_fc17.nasl
2012-04-02 Name : Fedora Update for zabbix FEDORA-2011-10583
File : nvt/gb_fedora_2011_10583_zabbix_fc16.nasl
2012-04-02 Name : Fedora Update for zabbix FEDORA-2011-12457
File : nvt/gb_fedora_2011_12457_zabbix_fc16.nasl
2012-03-19 Name : Fedora Update for zabbix FEDORA-2011-17560
File : nvt/gb_fedora_2011_17560_zabbix_fc16.nasl
2012-01-09 Name : Fedora Update for zabbix FEDORA-2011-17559
File : nvt/gb_fedora_2011_17559_zabbix_fc15.nasl
2011-09-20 Name : ZABBIX 'popup.php' Information Disclosure Vulnerability
File : nvt/gb_zabbix_49277.nasl
2011-09-20 Name : Fedora Update for zabbix FEDORA-2011-12485
File : nvt/gb_fedora_2011_12485_zabbix_fc15.nasl
2011-09-20 Name : Fedora Update for zabbix FEDORA-2011-12489
File : nvt/gb_fedora_2011_12489_zabbix_fc14.nasl
2011-08-19 Name : Fedora Update for zabbix FEDORA-2011-10601
File : nvt/gb_fedora_2011_10601_zabbix_fc14.nasl
2011-08-19 Name : Fedora Update for zabbix FEDORA-2011-10618
File : nvt/gb_fedora_2011_10618_zabbix_fc15.nasl
2011-08-19 Name : ZABBIX 'backurl' Parameter Cross Site Scripting Vulnerability
File : nvt/gb_zabbix_49016.nasl
2010-12-02 Name : Fedora Update for zabbix FEDORA-2010-12646
File : nvt/gb_fedora_2010_12646_zabbix_fc14.nasl
2010-08-30 Name : Fedora Update for zabbix FEDORA-2010-12752
File : nvt/gb_fedora_2010_12752_zabbix_fc13.nasl
2010-08-02 Name : ZABBIX 'formatQuery()' Cross Site Scripting Vulnerability
File : nvt/gb_zabbix_42017.nasl
2010-05-04 Name : ZABBIX 'nav_time' Parameter SQL Injection Vulnerability
File : nvt/gb_zabbix_39752.nasl
2010-01-28 Name : Zabbix Arbitrary Command Execution Vulnerability
File : nvt/secpod_zabbix_serv_arbitrary_cmd_exec_vuln.nasl

Snort® IPS/IDS

Date Description
2017-05-25 Zabbix Proxy configuration containing script detected
RuleID : 42337 - Type : INDICATOR-COMPROMISE - Revision : 2
2017-05-25 Zabbix Server Trapper code execution attempt
RuleID : 42326 - Type : SERVER-OTHER - Revision : 2
2014-01-10 Zabbix httpmon.php SQL injection attempt
RuleID : 28251 - Type : SERVER-WEBAPP - Revision : 4
2014-01-10 Zabbix Server arbitrary command execution attempt
RuleID : 25103 - Type : SERVER-OTHER - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-08-14 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3937.nasl - Type: ACT_GATHER_INFO
2017-06-05 Name: A web application running on the remote host is affected by multiple vulnerab...
File: zabbix_frontend_3_2_5.nasl - Type: ACT_GATHER_INFO
2017-03-06 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3802.nasl - Type: ACT_GATHER_INFO
2014-06-03 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201401-26.nasl - Type: ACT_GATHER_INFO
2014-05-25 Name: The remote Fedora host is missing a security update.
File: fedora_2014-6373.nasl - Type: ACT_GATHER_INFO
2014-05-25 Name: The remote Fedora host is missing a security update.
File: fedora_2014-6343.nasl - Type: ACT_GATHER_INFO
2014-05-02 Name: The remote Fedora host is missing a security update.
File: fedora_2014-5551.nasl - Type: ACT_GATHER_INFO
2014-05-02 Name: The remote Fedora host is missing a security update.
File: fedora_2014-5540.nasl - Type: ACT_GATHER_INFO
2014-03-03 Name: The remote web application may be affected by multiple vulnerabilities.
File: zabbix_frontend_2_2_2.nasl - Type: ACT_GATHER_INFO
2013-12-19 Name: The remote web application may be affected by a denial of service vulnerability.
File: zabbix_frontend_1_9_4.nasl - Type: ACT_GATHER_INFO
2013-12-16 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_44d0f8dc660711e3bb110025900931f8.nasl - Type: ACT_GATHER_INFO
2013-12-14 Name: The remote Fedora host is missing a security update.
File: fedora_2013-22741.nasl - Type: ACT_GATHER_INFO
2013-12-13 Name: The remote Fedora host is missing a security update.
File: fedora_2013-22764.nasl - Type: ACT_GATHER_INFO
2013-11-26 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201311-15.nasl - Type: ACT_GATHER_INFO
2013-10-18 Name: The remote web application may be affected by multiple SQL injection vulnerab...
File: zabbix_frontend_1_8_18rc1.nasl - Type: ACT_GATHER_INFO
2013-10-15 Name: The remote Fedora host is missing a security update.
File: fedora_2013-18314.nasl - Type: ACT_GATHER_INFO
2013-10-15 Name: The remote Fedora host is missing a security update.
File: fedora_2013-18348.nasl - Type: ACT_GATHER_INFO
2013-10-15 Name: The remote Fedora host is missing a security update.
File: fedora_2013-18351.nasl - Type: ACT_GATHER_INFO
2013-06-20 Name: The remote web application may be affected by an authentication bypass vulner...
File: zabbix_frontend_1_8_16.nasl - Type: ACT_GATHER_INFO
2013-01-29 Name: The remote Fedora host is missing a security update.
File: fedora_2013-1002.nasl - Type: ACT_GATHER_INFO
2013-01-29 Name: The remote Fedora host is missing a security update.
File: fedora_2013-1082.nasl - Type: ACT_GATHER_INFO
2012-10-30 Name: The remote web server hosts a PHP application that is prone to a SQL injectio...
File: zabbix_frontend_itemid_sqli.nasl - Type: ACT_ATTACK
2012-09-07 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-2539.nasl - Type: ACT_GATHER_INFO
2012-08-31 Name: The remote Fedora host is missing a security update.
File: fedora_2012-12488.nasl - Type: ACT_GATHER_INFO
2012-08-31 Name: The remote Fedora host is missing a security update.
File: fedora_2012-12496.nasl - Type: ACT_GATHER_INFO