Skip to main content

Zabbix Server

2 CVEs product

Monthly

CVE-2023-32727 HIGH This Week

An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Zabbix Zabbix Server
NVD
CVSS 3.1
7.2
EPSS
0.9%
CVE-2023-32725 HIGH This Week

The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zabbix Server Frontend
NVD
CVSS 3.1
8.8
EPSS
0.8%
EPSS 1% CVSS 7.2
HIGH This Week

An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Zabbix Zabbix Server
NVD
EPSS 1% CVSS 8.8
HIGH This Week

The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zabbix Server Frontend
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy