Zabbix : Security Vulnerabilities, CVEs, Published In May 2014
The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and 2.2.x before 2.2.2rc1 allows remote "Zabbix Admin" users to modify the media of arbitrary users via unspecified vectors.
Max CVSS
5.5
EPSS Score
0.16%
Published
2014-05-08
Updated
2014-05-09
The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 allows remote authenticated users to spoof arbitrary users via the user name in a user.login request.
Max CVSS
4.0
EPSS Score
0.17%
Published
2014-05-08
Updated
2014-05-09
2 vulnerabilities found