zabbix Frontend Vulnerabilities
Zabbix Frontend vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
X-Forwarded-For header is active by default causes access to Zabbix sites in maintenance mode
CVE-2022-43515ZabbixFrontend5.3MEDIUMReflected XSS in the backurl parameter of Zabbix Frontend
CVE-2022-40626ZabbixFrontend4.8MEDIUMReflected XSS in discovery page of Zabbix Frontend
CVE-2022-35229ZabbixFrontend3.7LOWReflected XSS in graphs page of Zabbix Frontend
CVE-2022-35230ZabbixFrontend3.7LOWReflected XSS in item configuration window of Zabbix Frontend
CVE-2022-24918ZabbixFrontend3.7LOWReflected XSS in action configuration window of Zabbix Frontend
CVE-2022-24349ZabbixFrontend4.6MEDIUMReflected XSS in service configuration window of Zabbix Frontend
CVE-2022-24917ZabbixFrontend3.7LOWReflected XSS in graph configuration window of Zabbix Frontend
CVE-2022-24919ZabbixFrontend3.7LOWUnsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML
CVE-2022-23131ZabbixFrontendπΎπ‘EPSS 94%π¦ 9.8CRITICALStored XSS in host groups configuration window in Zabbix Frontend
CVE-2022-23133ZabbixFrontend6.3MEDIUMPossible view of the setup pages by unauthenticated users if config file already exists
CVE-2022-23134ZabbixFrontendπΎπ‘EPSS 93%π¦ 5.3MEDIUM