Details
-
Type:
Incident report
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 2.0.20
-
Fix Version/s: None
-
Component/s: Server (S)
-
Labels:None
-
Environment:Zabbix 2.4
-
Team:Team C
-
Sprint:Sprint 4, Sprint 5
-
Story Points:0
Description
These vulnerabilities were discovered by Lilith Wyatt, Cisco Systems.
Findings are related to Zabbix version 2.4.
If reproducible on current version please fix.
Patch for 2.4 version is out of scope.
Attachments
1.
|
Bug 1. Zabbix Server Remote Code Execution ( CVSS: 10, SIR: Critical ) |
|
Closed | Unassigned |
2.
|
Bug 2. Active Zabbix Proxy MITM Database Overwrite (CVSS 6.8: SIR: High) |
|
Closed | Unassigned |