ZabbixCVEs & Vulnerabilities

115 CVEs affecting Zabbix products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

zabbix 806frontend 21zabbix-agent2 6zabbix server 4zabbix-agent 2zabbix agentd 1web service report generation 1
CVE-2011-4615MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Zabbix before 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the gname parameter (aka host groups name) to (1) hostgroups.php and (2) usergrps.php, the update action to (3) hosts.php and (4) scripts.php, and (5) maintenance.php.

30 Dec 2011
4.3
CVSS
CVE-2011-4674HIGHpoc

SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4, and possibly other versions before 1.8.9, allows remote attackers to execute arbitrary SQL commands via the only_hostid parameter.

2 Dec 2011
7.5
CVSS
CVE-2010-5049HIGH

SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the nav_time parameter.

23 Nov 2011
7.5
CVSS
CVE-2011-3265MEDIUM

popup.php in Zabbix before 1.8.7 allows remote attackers to read the contents of arbitrary database tables via a modified srctbl parameter.

20 Aug 2011
5.0
CVSS
CVE-2011-3264MEDIUM

Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.

20 Aug 2011
5.0
CVSS
CVE-2011-3263MEDIUM

zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device.

20 Aug 2011
5.0
CVSS
CVE-2011-2904MEDIUM

Cross-site scripting (XSS) vulnerability in acknow.php in Zabbix before 1.8.6 allows remote attackers to inject arbitrary web script or HTML via the backurl parameter.

20 Aug 2011
4.3
CVSS
CVE-2010-2790MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in the formatQuery function in frontends/php/include/classes/class.curl.php in Zabbix before 1.8.3rc1 allow remote attackers to inject arbitrary web script or HTML via the (1) filter_set, (2) show_details, (3) filter_rst, or (4) txt_select parameters to the triggers page (tr_status.php). NOTE: some of these details are obtained from third party information.

5 Aug 2010
4.3
CVSS
CVE-2010-1277HIGH

SQL injection vulnerability in the user.authenticate method in the API in Zabbix 1.8 before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the user parameter in JSON data to api_jsonrpc.php.

6 Apr 2010
7.5
CVSS
CVE-2009-4502CRITICALpoc

The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this attack is limited to attacks from trusted IP addresses.

31 Dec 2009
9.3
CVSS
CVE-2009-4501MEDIUMpoc

The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service (crash) via a request that lacks expected separators, which triggers a NULL pointer dereference, as demonstrated using the Command keyword.

31 Dec 2009
5.0
CVSS
CVE-2009-4500MEDIUM

The process_trap function in trapper/trapper.c in Zabbix Server before 1.6.6 allows remote attackers to cause a denial of service (crash) via a crafted request with data that lacks an expected : (colon) separator, which triggers a NULL pointer dereference.

31 Dec 2009
5.0
CVSS
CVE-2009-4499HIGHpoc

SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted request, possibly related to the send_history_last_id function in zabbix_server/trapper/nodehistory.c.

31 Dec 2009
7.5
CVSS
CVE-2009-4498MEDIUMpoc

The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute arbitrary commands via a crafted request.

31 Dec 2009
6.8
CVSS
CVE-2008-1353MEDIUMpoc

zabbix_agentd in ZABBIX 1.4.4 allows remote attackers to cause a denial of service (CPU and connection consumption) via multiple vfs.file.cksum commands with a special device node such as /dev/urandom or /dev/zero.

17 Mar 2008
4.3
CVSS
CVE-2007-6210LOWpoc

zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.

4 Dec 2007
2.1
CVSS
CVE-2007-0640CRITICAL

Buffer overflow in ZABBIX before 1.1.5 has unknown impact and attack vectors related to "SNMP IP addresses."

31 Jan 2007
10.0
CVSS
CVE-2006-6693HIGH

Multiple buffer overflows in zabbix before 20061006 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via long strings to the (1) zabbix_log and (2) zabbix_syslog functions.

21 Dec 2006
7.5
CVSS
CVE-2006-6692HIGHpoc

Multiple format string vulnerabilities in zabbix before 20061006 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in information that would be recorded in the system log using (1) zabbix_log or (2) zabbix_syslog.

21 Dec 2006
7.5
CVSS
← PrevPage 3 / 3Next →