CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-5743

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1620%
EPSS Percentile35.89th
Published2019年12月11日
Last Modified2024年11月21日

Vulnerability Description

Multiple SQL injection vulnerabilities in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.9rc1, and 2.1.x before 2.1.7.

Affected Platforms (CPE)

📦
Zabbix

Zabbix

>= 1.8 and <= 1.8.17
📦
Zabbix

Zabbix

>= 2.0.0 and <= 2.0.8
📦
Zabbix

Zabbix

>= 2.1.0 and <= 2.1.7

References & Advisories

🔗 https://admin.fedoraproject.org/updates/zabbix-1.8.18-1.el6
🔗 https://admin.fedoraproject.org/updates/zabbix20-2.0.8-3.el6
🔗 https://admin.fedoraproject.org/updates/zabbix20-2.0.9-1.el5
🔗 https://support.zabbix.com/browse/ZBX-7091
🔗 https://admin.fedoraproject.org/updates/zabbix-1.8.18-1.el6
🔗 https://admin.fedoraproject.org/updates/zabbix20-2.0.8-3.el6
🔗 https://admin.fedoraproject.org/updates/zabbix20-2.0.9-1.el5
🔗 https://support.zabbix.com/browse/ZBX-7091

相關漏洞威脅

CVE-2007-064010.0

Buffer overflow in ZABBIX before 1.1.5 has unknown impact and attack vectors related to "SNMP IP addresses."

CVE-2013-37389.8

A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequate sanitization of request strings in CGI scripts, which coul...

CVE-2020-118009.8

Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows remote attackers to execute arbitrary code.

CVE-2014-30059.8

XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x...