Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/366427?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "type": "deb", "namespace": "debian", "name": "zabbix", "version": "1:7.0.22+dfsg-1~deb13u1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1:7.0.22+dfsg-1", "latest_non_vulnerable_version": "1:7.0.22+dfsg-1.1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81706?format=api", "vulnerability_id": "VCID-1f68-etqk-7bgc", "summary": "A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequate sanitization of request strings in CGI scripts, which could let a remote malicious user execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3738", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09146", "scoring_system": "epss", "scoring_elements": "0.92809", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-3738" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3738", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3738" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366439?format=api", "purl": "pkg:deb/debian/zabbix@1:2.0.7%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.0.7%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-3738" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1f68-etqk-7bgc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86679?format=api", "vulnerability_id": "VCID-1jmk-3utk-f3gf", "summary": "Host and event action script input is validated with a regex (set by the administrator), but the validation runs in multiline mode. If ^ and $ anchors are used in user input validation, an injected newline lets authenticated users bypass the check and inject shell commands.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23920", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19031", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23920" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23920", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23920" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27639", "reference_id": "ZBX-27639", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T19:24:03Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27639" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-23920" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1jmk-3utk-f3gf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85728?format=api", "vulnerability_id": "VCID-27zk-gd76-17d9", "summary": "An administrator with restricted permissions can exploit the script execution functionality within the Monitoring Hosts section. The lack of default escaping for script parameters enabled this user ability to execute arbitrary code via the Ping script, thereby compromising infrastructure.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22116", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.66131", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22116" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22116", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22116" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25016", "reference_id": "ZBX-25016", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-04T04:55:28Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25016" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366459?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22116" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-27zk-gd76-17d9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85933?format=api", "vulnerability_id": "VCID-28tw-zq62-muhw", "summary": "In the src/libs/zbxembed/browser.c file, the es_browser_ctor method retrieves a heap pointer from the Duktape JavaScript engine. This heap pointer is subsequently utilized by the browser_push_error method in the src/libs/zbxembed/browser_error.c file. A use-after-free bug can occur at this stage if the wd->browser heap pointer is freed by garbage collection.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42331", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1421", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42331" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25627", "reference_id": "ZBX-25627", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:55:25Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25627" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366464?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.45%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.45%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42331" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28tw-zq62-muhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85935?format=api", "vulnerability_id": "VCID-2gdp-ezx6-r3gc", "summary": "The researcher is showing that it is possible to leak a small amount of Zabbix Server memory using an out of bounds read in src/libs/zbxmedia/email.c", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42333", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32321", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42333" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25629", "reference_id": "ZBX-25629", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:54:27Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25629" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366464?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.45%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.45%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42333" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2gdp-ezx6-r3gc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81225?format=api", "vulnerability_id": "VCID-2p65-k7sj-t7fa", "summary": "zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3263", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65181", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3263" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3263", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3263" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366435?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-3263" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2p65-k7sj-t7fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87699?format=api", "vulnerability_id": "VCID-2szn-6tbd-b7ak", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42326", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27288", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25622", "reference_id": "ZBX-25622", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:56:46Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25622" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42326" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2szn-6tbd-b7ak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91499?format=api", "vulnerability_id": "VCID-2xda-jyqx-sbfb", "summary": "A Zabbix adminitrator can inject arbitrary SQL during the autoremoval of hosts by inserting malicious SQL in the 'Visible name' field.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27240", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26033", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27240" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26986", "reference_id": "ZBX-26986", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-13T03:55:34Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26986" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27240" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2xda-jyqx-sbfb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86309?format=api", "vulnerability_id": "VCID-31f1-tmyp-7bb3", "summary": "A regular Zabbix user can search other users in their user group via Zabbix API by select fields the user does not have access to view. This allows data-mining some field values the user does not have access to.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27236", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13391", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27236" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27236", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27236" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448", "reference_id": "1117448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27060", "reference_id": "ZBX-27060", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-03T13:52:30Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27060" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27236" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-31f1-tmyp-7bb3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8618?format=api", "vulnerability_id": "VCID-3wu1-6ryx-kfbk", "summary": "zabbix: Zabbix: Confidentiality loss via improper access control in configuration.import API", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23925.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23925.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23925", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03693", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23925" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23925", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23925" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445155", "reference_id": "2445155", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445155" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27567", "reference_id": "ZBX-27567", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:L/SC:H/SI:N/SA:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-09T20:54:37Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27567" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-23925" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3wu1-6ryx-kfbk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85931?format=api", "vulnerability_id": "VCID-3zqr-p6r1-nqhm", "summary": "Zabbix API user.get returns all users that share common group with the calling user. This includes media and other information, such as login attempts, etc.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42325", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.17065", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42325" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26258", "reference_id": "ZBX-26258", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-02T14:48:54Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26258" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366467?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.46%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.46%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366465?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42325" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3zqr-p6r1-nqhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84474?format=api", "vulnerability_id": "VCID-49aq-ph1m-mbe6", "summary": "An authenticated user can create a hosts group from the configuration with XSS payload, which will be available for other users. When XSS is stored by an authenticated malicious actor and other users try to search for groups during new host creation, the XSS payload will fire and the actor can steal session cookies and perform session hijacking to impersonate users or take over their accounts.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23133", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00963", "scoring_system": "epss", "scoring_elements": "0.76827", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23133" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23133", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23133" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23133" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-49aq-ph1m-mbe6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85218?format=api", "vulnerability_id": "VCID-4a17-zh7e-q3f7", "summary": "The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32726", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32615", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32726" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366458?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.24%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.24%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32726" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4a17-zh7e-q3f7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81227?format=api", "vulnerability_id": "VCID-57va-5y9r-6bc7", "summary": "popup.php in Zabbix before 1.8.7 allows remote attackers to read the contents of arbitrary database tables via a modified srctbl parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3265", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00516", "scoring_system": "epss", "scoring_elements": "0.66963", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3265" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3265", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3265" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366436?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-3265" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-57va-5y9r-6bc7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=api", "vulnerability_id": "VCID-5p3r-fm4e-mfc8", "summary": "Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. This can be used to leak the NTLMv2 hash from a Windows system.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27233", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12097", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27233" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448", "reference_id": "1117448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26987", "reference_id": "ZBX-26987", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:H/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-12T11:57:58Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26987" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27233" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5p3r-fm4e-mfc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80872?format=api", "vulnerability_id": "VCID-6773-ukhy-gubs", "summary": "The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service (crash) via a request that lacks expected separators, which triggers a NULL pointer dereference, as demonstrated using the Command keyword.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4501", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04567", "scoring_system": "epss", "scoring_elements": "0.89372", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4501" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4501", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4501" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613", "reference_id": "562613", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366432?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4501" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6773-ukhy-gubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87685?format=api", "vulnerability_id": "VCID-6tyb-zf1h-k7fx", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36468", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.66025", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36468" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25621", "reference_id": "ZBX-25621", "reference_type": "", "scores": [ { "value": "3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:57:25Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25621" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366463?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.3%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.3%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36468" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6tyb-zf1h-k7fx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81303?format=api", "vulnerability_id": "VCID-6umv-mqdu-tbdy", "summary": "SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4, and possibly other versions before 1.8.9, allows remote attackers to execute arbitrary SQL commands via the only_hostid parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4674", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58295", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4674" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651225", "reference_id": "651225", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651225" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/18155.txt", "reference_id": "CVE-2011-4674;OSVDB-77509", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/18155.txt" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366436?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-4674" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6umv-mqdu-tbdy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81835?format=api", "vulnerability_id": "VCID-75g5-t49t-tyfk", "summary": "XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x before 2.3.2 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3005", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04287", "scoring_system": "epss", "scoring_elements": "0.89026", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3005" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3005", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3005" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751910", "reference_id": "751910", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751910" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366445?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-3005" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-75g5-t49t-tyfk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81942?format=api", "vulnerability_id": "VCID-7t6e-5r2s-rbhq", "summary": "Multiple SQL injection vulnerabilities in chart_bar.php in the frontend in Zabbix before 1.8.22, 2.0.x before 2.0.14, and 2.2.x before 2.2.8 allow remote attackers to execute arbitrary SQL commands via the (1) itemid or (2) periods parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9450", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00458", "scoring_system": "epss", "scoring_elements": "0.64257", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9450" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9450", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9450" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774750", "reference_id": "774750", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774750" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366446?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9450" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7t6e-5r2s-rbhq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81735?format=api", "vulnerability_id": "VCID-8act-p3k8-k7b2", "summary": "Zabbix 2.0.5 allows remote authenticated users to discover the LDAP bind password by leveraging management-console access and reading the ldap_bind_password value in the HTML source code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-5572", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07821", "scoring_system": "epss", "scoring_elements": "0.92101", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-5572" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5572", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5572" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/36157.rb", "reference_id": "CVE-2013-5572;OSVDB-97811", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/36157.rb" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366441?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-5572" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8act-p3k8-k7b2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91498?format=api", "vulnerability_id": "VCID-8h3v-tynt-sqgc", "summary": "Due to a bug in Zabbix API, the hostprototype.get method lists all host prototypes to users that do not have any user groups assigned to them.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27238", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09726", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27238" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448", "reference_id": "1117448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26988", "reference_id": "ZBX-26988", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-12T11:54:14Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26988" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27238" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8h3v-tynt-sqgc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75590?format=api", "vulnerability_id": "VCID-8hf1-hkj1-vffb", "summary": "FrameWork: XSS Ajax requests (AST-2009-009)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7220.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7220.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-7220", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10024", "scoring_system": "epss", "scoring_elements": "0.93184", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-7220" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7220", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7220" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=523277", "reference_id": "523277", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=523277" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220", "reference_id": "555220", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221", "reference_id": "555221", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555242", "reference_id": "555242", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555242" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555244", "reference_id": "555244", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250", "reference_id": "555250", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255", "reference_id": "555255", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555259", "reference_id": "555259", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555259" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555266", "reference_id": "555266", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555266" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977", "reference_id": "558977", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977" }, { "reference_url": "https://security.gentoo.org/glsa/201006-20", "reference_id": "GLSA-201006-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201006-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-7220" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8hf1-hkj1-vffb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87582?format=api", "vulnerability_id": "VCID-91y8-33r3-p3bd", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32728", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00536", "scoring_system": "epss", "scoring_elements": "0.67743", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32728" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23858", "reference_id": "ZBX-23858", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T20:43:15Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23858" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366458?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.24%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.24%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32728" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-91y8-33r3-p3bd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81226?format=api", "vulnerability_id": "VCID-99qy-earm-g7g7", "summary": "Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3264", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00455", "scoring_system": "epss", "scoring_elements": "0.64109", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3264" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3264", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3264" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366435?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-3264" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-99qy-earm-g7g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85217?format=api", "vulnerability_id": "VCID-9kpu-3pg7-sye9", "summary": "Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32724", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0072", "scoring_system": "epss", "scoring_elements": "0.7279", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32724" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877", "reference_id": "1053877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23391", "reference_id": "ZBX-23391", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-17T13:43:17Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23391" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32724" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9kpu-3pg7-sye9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85886?format=api", "vulnerability_id": "VCID-9qk4-t8r9-3qac", "summary": "Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36469", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30718", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36469" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26255", "reference_id": "ZBX-26255", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-02T15:00:32Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26255" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366467?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.46%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.46%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366465?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36469" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9qk4-t8r9-3qac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80871?format=api", "vulnerability_id": "VCID-a4sb-ga8s-ffhv", "summary": "The process_trap function in trapper/trapper.c in Zabbix Server before 1.6.6 allows remote attackers to cause a denial of service (crash) via a crafted request with data that lacks an expected : (colon) separator, which triggers a NULL pointer dereference.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4500", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00734", "scoring_system": "epss", "scoring_elements": "0.73063", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4500" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4500", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4500" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613", "reference_id": "562613", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366432?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4500" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a4sb-ga8s-ffhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14780?format=api", "vulnerability_id": "VCID-a6ew-t1nh-v3g3", "summary": "zabbix: Zabbix: Authenticated Super Admin can read arbitrary files via oauth.authorize action", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27232.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27232.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27232", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11458", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27232" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417984", "reference_id": "2417984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417984" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27282", "reference_id": "ZBX-27282", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T14:38:44Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27282" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27232" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a6ew-t1nh-v3g3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=api", "vulnerability_id": "VCID-a9mq-7ts8-zycm", "summary": "In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27237", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01336", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27237" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27061", "reference_id": "ZBX-27061", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-04T03:55:25Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27061" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27237" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a9mq-7ts8-zycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84490?format=api", "vulnerability_id": "VCID-bf1z-tqan-q3eh", "summary": "An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attack can be implemented with the help of social engineering and expiration of a number of factors - an attacker should have authorized access to the Zabbix Frontend and allowed network connection between a malicious server and victim’s computer, understand attacked infrastructure, be recognized by the victim as a trustee and use trusted communication channel.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24349", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00849", "scoring_system": "epss", "scoring_elements": "0.75179", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24349" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-24349" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bf1z-tqan-q3eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80369?format=api", "vulnerability_id": "VCID-bpcv-f3uk-pub5", "summary": "Buffer overflow in ZABBIX before 1.1.5 has unknown impact and attack vectors related to \"SNMP IP addresses.\"", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-0640", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00924", "scoring_system": "epss", "scoring_elements": "0.76346", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-0640" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0640", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0640" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=409257", "reference_id": "409257", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=409257" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366428?format=api", "purl": "pkg:deb/debian/zabbix@1:1.1.4-8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.1.4-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-0640" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bpcv-f3uk-pub5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84503?format=api", "vulnerability_id": "VCID-bweu-8ww3-kfha", "summary": "An authenticated user can create a link with reflected Javascript code inside it for items’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24918", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0097", "scoring_system": "epss", "scoring_elements": "0.76911", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24918" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24918", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24918" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-24918" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bweu-8ww3-kfha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=api", "vulnerability_id": "VCID-bz1x-8wtk-z7fp", "summary": "Arbitrary file read vulnerability exists in Zabbix Web Service Report Generation, which listens on the port 10053. The service does not have proper validation for URL parameters before reading the files.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05203", "scoring_system": "epss", "scoring_elements": "0.9007", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46768" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026847", "reference_id": "1026847", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026847" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22087", "reference_id": "ZBX-22087", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T13:48:48Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22087" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366456?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.13%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.13%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46768" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bz1x-8wtk-z7fp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85164?format=api", "vulnerability_id": "VCID-c3jn-yp2v-27fa", "summary": "Duktape is an 3rd-party embeddable JavaScript engine, with a focus on portability and compact footprint. When adding too many values in valstack JavaScript will crash. This issue occurs due to bug in Duktape 2.6 which is an 3rd-party solution that we use.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29458", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33344", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29458" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29458", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29458" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22989", "reference_id": "ZBX-22989", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:19:37Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22989" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29458" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c3jn-yp2v-27fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87510?format=api", "vulnerability_id": "VCID-czdr-qz3v-tbgd", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-40626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01866", "scoring_system": "epss", "scoring_elements": "0.83403", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-40626" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-40626" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czdr-qz3v-tbgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83639?format=api", "vulnerability_id": "VCID-d3da-3jpt-6ffb", "summary": "Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.47753", "scoring_system": "epss", "scoring_elements": "0.97758", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11800" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366451?format=api", "purl": "pkg:deb/debian/zabbix@1:4.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:4.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-11800" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d3da-3jpt-6ffb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85160?format=api", "vulnerability_id": "VCID-dfug-hy1g-ckhy", "summary": "Stored or persistent cross-site scripting (XSS) is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload (e.g., in a database or server-side text files), and finally, the application unintentionally executes the payload for every victim visiting its web pages.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29454", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00815", "scoring_system": "epss", "scoring_elements": "0.74589", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29454" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29454" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:47Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22985", "reference_id": "ZBX-22985", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:47Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22985" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29454" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dfug-hy1g-ckhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80327?format=api", "vulnerability_id": "VCID-dtrj-hpa3-jqa1", "summary": "Multiple buffer overflows in zabbix before 20061006 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via long strings to the (1) zabbix_log and (2) zabbix_syslog functions.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00988", "scoring_system": "epss", "scoring_elements": "0.77144", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6693" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391388", "reference_id": "391388", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391388" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366424?format=api", "purl": "pkg:deb/debian/zabbix@1:1.1.2-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.1.2-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6693" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dtrj-hpa3-jqa1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81211?format=api", "vulnerability_id": "VCID-f29v-zcfp-kka3", "summary": "Cross-site scripting (XSS) vulnerability in acknow.php in Zabbix before 1.8.6 allows remote attackers to inject arbitrary web script or HTML via the backurl parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2904", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.73737", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2904" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2904", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2904" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366435?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-2904" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f29v-zcfp-kka3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78579?format=api", "vulnerability_id": "VCID-ffnw-2uen-u7gw", "summary": "zabbix: root", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6210.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6210.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6210", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00146", "scoring_system": "epss", "scoring_elements": "0.34714", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6210" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=407181", "reference_id": "407181", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=407181" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=452682", "reference_id": "452682", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=452682" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/30839.c", "reference_id": "CVE-2007-6210;OSVDB-42480", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/30839.c" }, { "reference_url": "https://www.securityfocus.com/bid/26680/info", "reference_id": "CVE-2007-6210;OSVDB-42480", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/26680/info" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366429?format=api", "purl": "pkg:deb/debian/zabbix@1:1.4.2-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.4.2-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-6210" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffnw-2uen-u7gw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85958?format=api", "vulnerability_id": "VCID-fp2q-2r83-5be8", "summary": "The endpoint /zabbix.php?action=export.valuemaps suffers from a Cross-Site Scripting vulnerability via the backurl parameter. This is caused by the reflection of user-supplied data without appropriate HTML escaping or output encoding. As a result, a JavaScript payload may be injected into the above endpoint causing it to be executed within the context of the victim's browser.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45699", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34069", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45699" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26254", "reference_id": "ZBX-26254", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-02T16:28:20Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366467?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.46%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.46%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366465?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45699" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fp2q-2r83-5be8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86433?format=api", "vulnerability_id": "VCID-fv8b-gqpz-hkcf", "summary": "An authenticated Zabbix user (including Guest) is able to cause disproportionate CPU load on the webserver by sending specially crafted parameters to /imgstore.php, leading to potential denial of service.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49643", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.27638", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49643" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49643", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49643" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121841", "reference_id": "1121841", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121841" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27284", "reference_id": "ZBX-27284", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T14:33:57Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27284" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49643" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fv8b-gqpz-hkcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/57415?format=api", "vulnerability_id": "VCID-g5w2-bawc-3ubs", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49642", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.05066", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49642" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27283", "reference_id": "ZBX-27283", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T14:36:06Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27283" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49642" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g5w2-bawc-3ubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81595?format=api", "vulnerability_id": "VCID-gawj-d9c9-hff2", "summary": "libs/zbxmedia/eztexting.c in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.8rc1, and 2.1.x before 2.1.2 does not properly set the CURLOPT_SSL_VERIFYHOST option for libcurl, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-6086", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.4116", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-6086" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6086", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6086" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697443", "reference_id": "697443", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697443" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366439?format=api", "purl": "pkg:deb/debian/zabbix@1:2.0.7%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.0.7%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-6086" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gawj-d9c9-hff2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85731?format=api", "vulnerability_id": "VCID-gcef-4wcx-2yd3", "summary": "Zabbix allows to configure SMS notifications. AT command injection occurs on \"Zabbix Server\" because there is no validation of \"Number\" field on Web nor on Zabbix server side. Attacker can run test of SMS providing specially crafted phone number and execute additional AT commands on modem.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22122", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63389", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22122" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22122", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22122" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25012", "reference_id": "ZBX-25012", "reference_type": "", "scores": [ { "value": "3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T14:46:40Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25012" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366459?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22122" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gcef-4wcx-2yd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84502?format=api", "vulnerability_id": "VCID-gkjd-q5mv-7ubu", "summary": "An authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24917", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00882", "scoring_system": "epss", "scoring_elements": "0.75706", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24917" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24917", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24917" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-24917" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gkjd-q5mv-7ubu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85882?format=api", "vulnerability_id": "VCID-gr58-gsq7-s3e3", "summary": "Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36461", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72896", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36461" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36461", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36461" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25018", "reference_id": "ZBX-25018", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T15:21:52Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25018" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366462?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36461" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gr58-gsq7-s3e3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91495?format=api", "vulnerability_id": "VCID-hca2-qfq5-fkas", "summary": "Currently, geomap configuration (Administration -> General -> Geographical maps) allows using HTML in the field “Attribution text” when selected “Other” Tile provider.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29452", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01991", "scoring_system": "epss", "scoring_elements": "0.83911", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29452" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22981", "reference_id": "ZBX-22981", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:21:55Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22981" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29452" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hca2-qfq5-fkas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86307?format=api", "vulnerability_id": "VCID-hgb3-wkuh-dybe", "summary": "The LDAP 'Bind password' value cannot be read after saving, but a Super Admin account can leak it by changing LDAP 'Host' to a rogue LDAP server. To mitigate this, the 'Bind password' value is now reset on 'Host' change.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12208", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27231" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448", "reference_id": "1117448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27062", "reference_id": "ZBX-27062", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-03T13:55:44Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27062" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27231" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hgb3-wkuh-dybe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79278?format=api", "vulnerability_id": "VCID-hn7c-bxnw-uyaq", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.73548", "scoring_system": "epss", "scoring_elements": "0.9883", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2825" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863584", "reference_id": "863584", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863584" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366450?format=api", "purl": "pkg:deb/debian/zabbix@1:3.0.7%2Bdfsg-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:3.0.7%252Bdfsg-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-2824" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hn7c-bxnw-uyaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86678?format=api", "vulnerability_id": "VCID-hp4k-gppm-nqbf", "summary": "For performance reasons Zabbix Server/Proxy reuses JavaScript (Duktape) contexts (used in script items, JavaScript reprocessing, Webhooks). This can lead to confidentiality loss where a regular (non-super) Zabbix administrator leaks data for hosts they do not have access to. A fix has been released that makes the built in Zabbix JavaScript objects read-only, but please be advised that usage of global JavaScript variables is not recommended because their content could be leaked. More information <a href='https://www.zabbix.com/documentation/7.4/en/manual/installation/known_issues#preprocessing-global-variables-are-unsafe'>in Zabbix documentation</a>.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23919", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08674", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23919" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23919", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23919" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27638", "reference_id": "ZBX-27638", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T18:36:08Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27638" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-23919" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hp4k-gppm-nqbf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81499?format=api", "vulnerability_id": "VCID-jc5n-wk8s-ekdj", "summary": "SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix 1.8.15rc1 and earlier, and 2.x before 2.0.2rc1, allows remote attackers to execute arbitrary SQL commands via the itemid parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3435", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01799", "scoring_system": "epss", "scoring_elements": "0.83096", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3435" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3435", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3435" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683273", "reference_id": "683273", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683273" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/20087.py", "reference_id": "OSVDB-84127;CVE-2012-3435", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/20087.py" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366438?format=api", "purl": "pkg:deb/debian/zabbix@1:2.0.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.0.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3435" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jc5n-wk8s-ekdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85159?format=api", "vulnerability_id": "VCID-jcsf-hv23-fyhm", "summary": "Templates do not properly consider backticks (`) as Javascript string delimiters, and do not escape them as expected. Backticks are used, since ES6, for JS template literals. If a template contains a Go template action within a Javascript template literal, the contents of the action can be used to terminate the literal, injecting arbitrary Javascript code into the Go template. As ES6 template literals are rather complex, and themselves can do string interpolation, the decision was made to simply disallow Go template actions from being used inside of them (e.g., \"var a = {{.}}\"), since there is no obviously safe way to allow this behavior. This takes the same approach as github.com/google/safehtml. With fix, Template. Parse returns an Error when it encounters templates like this, with an ErrorCode of value 12. This ErrorCode is currently unexported but will be exported in the release of Go 1.21. Users who rely on the previous behavior can re-enable it using the GODEBUG flag jstmpllitinterp=1, with the caveat that backticks will now be escaped. This should be used with caution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29453", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68549", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29453" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23388", "reference_id": "ZBX-23388", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-18T15:17:42Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23388" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29453" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jcsf-hv23-fyhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84504?format=api", "vulnerability_id": "VCID-jnjc-egmq-23cy", "summary": "An authenticated user can create a link with reflected Javascript code inside it for graphs’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24919", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00882", "scoring_system": "epss", "scoring_elements": "0.75706", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24919" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24919", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24919" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-24919" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnjc-egmq-23cy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82168?format=api", "vulnerability_id": "VCID-jymp-fmru-z7fk", "summary": "Zabbix before 2.2.21rc1, 3.x before 3.0.13rc1, 3.1.x and 3.2.x before 3.2.10rc1, and 3.3.x and 3.4.x before 3.4.4rc1 allows open redirect via the request parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10742", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60592", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10742" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366448?format=api", "purl": "pkg:deb/debian/zabbix@1:3.0.17%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:3.0.17%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-10742" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jymp-fmru-z7fk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85215?format=api", "vulnerability_id": "VCID-k2c8-xyyw-bugs", "summary": "The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbx_json_open.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32722", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.5823", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32722" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32722", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32722" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877", "reference_id": "1053877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23390", "reference_id": "ZBX-23390", "reference_type": "", "scores": [ { "value": "9.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-18T15:26:49Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23390" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32722" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k2c8-xyyw-bugs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83411?format=api", "vulnerability_id": "VCID-k3dy-7y2j-cyfv", "summary": "Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the \"Login name or password is incorrect\" and \"No permissions for system access\" messages, or just blocking for a number of seconds). This affects both api_jsonrpc.php and index.php.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15132", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00522", "scoring_system": "epss", "scoring_elements": "0.67184", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15132" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15132", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15132" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935027", "reference_id": "935027", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935027" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366452?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.7%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.7%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2019-15132" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3dy-7y2j-cyfv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80969?format=api", "vulnerability_id": "VCID-kcq6-m8re-pkb2", "summary": "Multiple cross-site scripting (XSS) vulnerabilities in the formatQuery function in frontends/php/include/classes/class.curl.php in Zabbix before 1.8.3rc1 allow remote attackers to inject arbitrary web script or HTML via the (1) filter_set, (2) show_details, (3) filter_rst, or (4) txt_select parameters to the triggers page (tr_status.php). NOTE: some of these details are obtained from third party information.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2790", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63538", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2790" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2790", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2790" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594304", "reference_id": "594304", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594304" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366434?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2790" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kcq6-m8re-pkb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79279?format=api", "vulnerability_id": "VCID-kq6a-5b29-q7hr", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2825", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00626", "scoring_system": "epss", "scoring_elements": "0.70534", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2825" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863584", "reference_id": "863584", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863584" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366450?format=api", "purl": "pkg:deb/debian/zabbix@1:3.0.7%2Bdfsg-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:3.0.7%252Bdfsg-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-2825" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kq6a-5b29-q7hr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85884?format=api", "vulnerability_id": "VCID-ktpa-x12y-j7gh", "summary": "When exporting media types, the password is exported in the YAML in plain text. This appears to be a best practices type issue and may have no actual impact. The user would need to have permissions to access the media types and therefore would be expected to have access to these passwords.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36464", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20889", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36464" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36464", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36464" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1090030", "reference_id": "1090030", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1090030" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25630", "reference_id": "ZBX-25630", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:27:15Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25630" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366464?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.45%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.45%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366465?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36464" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ktpa-x12y-j7gh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87825?format=api", "vulnerability_id": "VCID-m5bd-1wzs-hbh2", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23923", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28228", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23923" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27641", "reference_id": "ZBX-27641", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-25T19:24:53Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27641" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-23923" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m5bd-1wzs-hbh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85219?format=api", "vulnerability_id": "VCID-m884-rwtn-v3fn", "summary": "An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32727", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00464", "scoring_system": "epss", "scoring_elements": "0.64625", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32727" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23857", "reference_id": "ZBX-23857", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-07T20:37:31Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23857" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32727" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m884-rwtn-v3fn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81752?format=api", "vulnerability_id": "VCID-m8de-ty7y-vueb", "summary": "Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 allows remote Zabbix servers and proxies to execute arbitrary commands via a newline in a flexible user parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01469", "scoring_system": "epss", "scoring_elements": "0.81225", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6824" }, { "reference_url": "https://security.gentoo.org/glsa/201401-26", "reference_id": "GLSA-201401-26", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-26" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366443?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.0%2Bdfsg-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.0%252Bdfsg-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-6824" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m8de-ty7y-vueb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85959?format=api", "vulnerability_id": "VCID-mb8y-88yg-g7bu", "summary": "Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. An attacker can send specially crafted requests to the server, which will cause the server to allocate an excessive amount of memory and perform CPU-intensive decompression operations, ultimately leading to a service crash.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45700", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35294", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45700" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26253", "reference_id": "ZBX-26253", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:27:38Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26253" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366467?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.46%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.46%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366468?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.10%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.10%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45700" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mb8y-88yg-g7bu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85727?format=api", "vulnerability_id": "VCID-mhc9-vh2a-97gr", "summary": "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22114", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38774", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22114" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22114", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22114" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25015", "reference_id": "ZBX-25015", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T12:39:48Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25015" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366459?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22114" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mhc9-vh2a-97gr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85158?format=api", "vulnerability_id": "VCID-ndz4-vfp7-2ycv", "summary": "JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user \"zabbix\") on the Zabbix Server or Zabbix Proxy, potentially leading to unauthorized access to sensitive data.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29450", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54291", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29450" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29450", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29450" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-06T14:20:54Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22588", "reference_id": "ZBX-22588", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-06T14:20:54Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22588" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29450" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndz4-vfp7-2ycv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85881?format=api", "vulnerability_id": "VCID-net7-4wh4-ukhr", "summary": "The front-end audit log allows viewing of unprotected plaintext passwords, where the passwords are displayed in plain text.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36460", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00446", "scoring_system": "epss", "scoring_elements": "0.63734", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36460" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36460", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36460" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25017", "reference_id": "ZBX-25017", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-09T15:04:09Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25017" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366462?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36460" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-net7-4wh4-ukhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85161?format=api", "vulnerability_id": "VCID-nrfa-cvvg-bqf2", "summary": "Reflected XSS attacks, also known as non-persistent attacks, occur when a malicious script is reflected off a web application to the victim's browser. The script is activated through a link, which sends a request to a website with a vulnerability that enables execution of malicious scripts.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29455", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01231", "scoring_system": "epss", "scoring_elements": "0.79484", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29455" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29455", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29455" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22986", "reference_id": "ZBX-22986", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:45Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22986" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29455" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrfa-cvvg-bqf2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85885?format=api", "vulnerability_id": "VCID-nuhv-g4d6-j7b7", "summary": "An authenticated user with API access (e.g.: user with default User role), more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group (e.g.: Zabbix Administrators), except to groups that are disabled or having restricted GUI access.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36467", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00608", "scoring_system": "epss", "scoring_elements": "0.70045", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36467" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36467", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36467" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25614", "reference_id": "ZBX-25614", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-12-04T04:55:25Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25614" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366466?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36467" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nuhv-g4d6-j7b7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86308?format=api", "vulnerability_id": "VCID-ny7h-2cu5-83fs", "summary": "Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. In Zabbix 5.0 this allows for remote code execution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27234", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00164", "scoring_system": "epss", "scoring_elements": "0.37184", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-27234" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27234", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27234" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26985", "reference_id": "ZBX-26985", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-12T15:16:38Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26985" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366470?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.47%2Bdfsg-0%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.47%252Bdfsg-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-27234" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ny7h-2cu5-83fs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85730?format=api", "vulnerability_id": "VCID-p2ar-g6j8-f7bw", "summary": "The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22119", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62366", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22119" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00020.html", "reference_id": "msg00020.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T14:54:06Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00020.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-24070", "reference_id": "ZBX-24070", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T14:54:06Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-24070" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366458?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.24%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.24%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22119" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p2ar-g6j8-f7bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87470?format=api", "vulnerability_id": "VCID-pfx5-57bg-cydy", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23131", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.94045", "scoring_system": "epss", "scoring_elements": "0.99904", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23131" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-20350", "reference_id": "ZBX-20350", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-01-29T17:20:59Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-20350" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23131" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pfx5-57bg-cydy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84473?format=api", "vulnerability_id": "VCID-pp4z-3694-jybe", "summary": "During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. In this case, Zabbix Proxy or Server processes can bypass file read, write and execute permissions check on the file system level", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23132", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.33992", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23132" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23132", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23132" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23132" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pp4z-3694-jybe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84691?format=api", "vulnerability_id": "VCID-q2wq-yj4y-bqcb", "summary": "An authenticated user can create a link with reflected Javascript code inside it for the graphs page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35230", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00874", "scoring_system": "epss", "scoring_elements": "0.75573", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35230" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35230", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35230" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014994", "reference_id": "1014994", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014994" }, { "reference_url": "https://usn.ubuntu.com/6751-1/", "reference_id": "USN-6751-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6751-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-35230" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q2wq-yj4y-bqcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87683?format=api", "vulnerability_id": "VCID-q51f-esz3-rud7", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36465", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02177", "scoring_system": "epss", "scoring_elements": "0.84611", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36465" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-26257", "reference_id": "ZBX-26257", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-02T15:09:12Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-26257" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366465?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36465" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q51f-esz3-rud7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80870?format=api", "vulnerability_id": "VCID-qabz-s6bg-v3cc", "summary": "SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted request, possibly related to the send_history_last_id function in zabbix_server/trapper/nodehistory.c.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4499", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47759", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4499" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4499", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4499" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613", "reference_id": "562613", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366432?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4499" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qabz-s6bg-v3cc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69400?format=api", "vulnerability_id": "VCID-qe3f-ug4c-43dg", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42327", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.91398", "scoring_system": "epss", "scoring_elements": "0.99677", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42327" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/52230.py", "reference_id": "CVE-2024-42327", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/52230.py" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25623", "reference_id": "ZBX-25623", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:10:31Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25623" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366462?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42327" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qe3f-ug4c-43dg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84835?format=api", "vulnerability_id": "VCID-qrz3-qk3u-6ygz", "summary": "Zabbix Frontend provides a feature that allows admins to maintain the installation and ensure that only certain IP addresses can access it. In this way, any user will not be able to access the Zabbix Frontend while it is being maintained and possible sensitive data will be prevented from being disclosed. An attacker can bypass this protection and access the instance using IP address not listed in the defined range.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43515", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33059", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43515" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43515", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43515" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026847", "reference_id": "1026847", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026847" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-22T17:57:56Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22050", "reference_id": "ZBX-22050", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-22T17:57:56Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22050" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366456?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.13%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.13%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43515" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qrz3-qk3u-6ygz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87682?format=api", "vulnerability_id": "VCID-qtaa-qaq8-sba3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36462", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00296", "scoring_system": "epss", "scoring_elements": "0.53166", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36462" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25019", "reference_id": "ZBX-25019", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-09T12:57:48Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25019" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366462?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36462" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qtaa-qaq8-sba3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87573?format=api", "vulnerability_id": "VCID-r4sw-v23f-8ucb", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29451", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32922", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29451" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:25:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22587", "reference_id": "ZBX-22587", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:25:43Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22587" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29451" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r4sw-v23f-8ucb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85157?format=api", "vulnerability_id": "VCID-r95n-4jeb-jbg2", "summary": "JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and disk I/O utilization. Preprocessing/webhook/global script configuration and testing are only available to Administrative roles (Admin and Superadmin). Administrative privileges should be typically granted to users who need to perform tasks that require more control over the system. The security risk is limited because not all users have this level of access.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29449", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0086", "scoring_system": "epss", "scoring_elements": "0.75325", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29449" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29449", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29449" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22589", "reference_id": "ZBX-22589", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:25:49Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22589" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29449" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r95n-4jeb-jbg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83682?format=api", "vulnerability_id": "VCID-ravf-3w98-qbej", "summary": "Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15803", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05067", "scoring_system": "epss", "scoring_elements": "0.89931", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15803" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966146", "reference_id": "966146", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966146" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366453?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-15803" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ravf-3w98-qbej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80326?format=api", "vulnerability_id": "VCID-scgy-gw9n-g7e7", "summary": "Multiple format string vulnerabilities in zabbix before 20061006 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in information that would be recorded in the system log using (1) zabbix_log or (2) zabbix_syslog.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05993", "scoring_system": "epss", "scoring_elements": "0.90823", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6692" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391388", "reference_id": "391388", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391388" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/28775.pl", "reference_id": "CVE-2006-6692;OSVDB-29575", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/28775.pl" }, { "reference_url": "https://www.securityfocus.com/bid/20416/info", "reference_id": "CVE-2006-6692;OSVDB-29575", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/20416/info" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366424?format=api", "purl": "pkg:deb/debian/zabbix@1:1.1.2-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.1.2-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6692" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-scgy-gw9n-g7e7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87700?format=api", "vulnerability_id": "VCID-sctk-3suk-fbae", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42328", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21087", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42328" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1090029", "reference_id": "1090029", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1090029" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25624", "reference_id": "ZBX-25624", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:56:07Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25624" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42328" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sctk-3suk-fbae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84690?format=api", "vulnerability_id": "VCID-sgzt-8jrg-3bew", "summary": "An authenticated user can create a link with reflected Javascript code inside it for the discovery page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00808", "scoring_system": "epss", "scoring_elements": "0.74497", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35229" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014992", "reference_id": "1014992", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014992" }, { "reference_url": "https://usn.ubuntu.com/6751-1/", "reference_id": "USN-6751-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6751-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-35229" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sgzt-8jrg-3bew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82220?format=api", "vulnerability_id": "VCID-stzc-fg3c-judj", "summary": "The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before 3.0.3, when used with a shell other than bash, allows context-dependent attackers to execute arbitrary code or SQL commands via the mysql.size parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4338", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.4496", "scoring_system": "epss", "scoring_elements": "0.97645", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4338" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4338", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4338" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823329", "reference_id": "823329", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823329" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/39769.txt", "reference_id": "CVE-2016-4338", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/39769.txt" }, { "reference_url": "https://security.gentoo.org/glsa/201612-42", "reference_id": "GLSA-201612-42", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201612-42" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366449?format=api", "purl": "pkg:deb/debian/zabbix@1:3.0.3%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:3.0.3%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-4338" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-stzc-fg3c-judj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82617?format=api", "vulnerability_id": "VCID-t4mu-7a42-cfac", "summary": "An information disclosure vulnerability exists in the iConfig proxy request of Zabbix server 2.4.X. A specially crafted iConfig proxy request can cause the Zabbix server to send the configuration information of any Zabbix proxy, resulting in information disclosure. An attacker can make requests from an active Zabbix proxy to trigger this vulnerability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2826", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49764", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2826" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2826", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2826" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366451?format=api", "purl": "pkg:deb/debian/zabbix@1:4.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:4.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-2826" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4mu-7a42-cfac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81300?format=api", "vulnerability_id": "VCID-tmnh-3pkx-6yfc", "summary": "Multiple cross-site scripting (XSS) vulnerabilities in Zabbix before 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the gname parameter (aka host groups name) to (1) hostgroups.php and (2) usergrps.php, the update action to (3) hosts.php and (4) scripts.php, and (5) maintenance.php.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4615", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00545", "scoring_system": "epss", "scoring_elements": "0.68088", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4615" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652664", "reference_id": "652664", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652664" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366437?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-4615" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tmnh-3pkx-6yfc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87684?format=api", "vulnerability_id": "VCID-tpsv-e6rv-3kas", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36466", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48951", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36466" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25635", "reference_id": "ZBX-25635", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-04T04:55:27Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25635" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366462?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36466" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tpsv-e6rv-3kas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81795?format=api", "vulnerability_id": "VCID-u5yp-9fyn-jbda", "summary": "The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 allows remote authenticated users to spoof arbitrary users via the user name in a user.login request.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1682", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00252", "scoring_system": "epss", "scoring_elements": "0.48727", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1682" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737818", "reference_id": "737818", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737818" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366441?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-1682" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u5yp-9fyn-jbda" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81324?format=api", "vulnerability_id": "VCID-uakt-9yhu-s3ey", "summary": "Cross-site scripting (XSS) vulnerability in ZABBIX before 1.8.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the profiler.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-5027", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63538", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-5027" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5027", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5027" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652664", "reference_id": "652664", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652664" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366437?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-5027" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uakt-9yhu-s3ey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85163?format=api", "vulnerability_id": "VCID-ur6a-arj7-gqae", "summary": "Reflected XSS attacks, occur when a malicious script is reflected off a web application to the victim's browser. The script can be activated through Action form fields, which can be sent as request to a website with a vulnerability that enables execution of malicious scripts.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29457", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00495", "scoring_system": "epss", "scoring_elements": "0.66032", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29457" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29457", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29457" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22988", "reference_id": "ZBX-22988", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T21:06:43Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22988" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29457" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ur6a-arj7-gqae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80920?format=api", "vulnerability_id": "VCID-uwym-3jg6-puf3", "summary": "SQL injection vulnerability in the user.authenticate method in the API in Zabbix 1.8 before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the user parameter in JSON data to api_jsonrpc.php.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1277", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01516", "scoring_system": "epss", "scoring_elements": "0.81522", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1277" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1277", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1277" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=577058", "reference_id": "577058", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=577058" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366433?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-1277" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uwym-3jg6-puf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80873?format=api", "vulnerability_id": "VCID-v81m-8udg-tbcj", "summary": "The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this attack is limited to attacks from trusted IP addresses.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4502", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.64138", "scoring_system": "epss", "scoring_elements": "0.98455", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4502" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4502", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4502" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613", "reference_id": "562613", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/freebsd/remote/16918.rb", "reference_id": "CVE-2009-4502;OSVDB-60956", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/freebsd/remote/16918.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/10431.txt", "reference_id": "CVE-2009-4502;OSVDB-60956", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/10431.txt" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366432?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4502" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v81m-8udg-tbcj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81781?format=api", "vulnerability_id": "VCID-v95p-p4ch-8khz", "summary": "Zabbix before 5.0 represents passwords in the users table with unsalted MD5.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7484", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43687", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7484" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366444?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-7484" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v95p-p4ch-8khz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85932?format=api", "vulnerability_id": "VCID-vf5e-hc3p-dkar", "summary": "The HttpRequest object allows to get the HTTP headers from the server's response after sending the request. The problem is that the returned strings are created directly from the data returned by the server and are not correctly encoded for JavaScript. This allows to create internal strings that can be used to access hidden properties of objects.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0023", "scoring_system": "epss", "scoring_elements": "0.45869", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42330" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25626", "reference_id": "ZBX-25626", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:12:32Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25626" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366464?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.45%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.45%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42330" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vf5e-hc3p-dkar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85214?format=api", "vulnerability_id": "VCID-vn1v-av5m-uydb", "summary": "A stored XSS has been found in the Zabbix web application in the Maps element if a URL field is set with spaces before URL.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00715", "scoring_system": "epss", "scoring_elements": "0.7267", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32721" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877", "reference_id": "1053877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32721" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vn1v-av5m-uydb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87646?format=api", "vulnerability_id": "VCID-w1d6-dtma-gbaf", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22121", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09405", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22121" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25011", "reference_id": "ZBX-25011", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T15:17:38Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25011" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22121" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w1d6-dtma-gbaf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87701?format=api", "vulnerability_id": "VCID-w2aq-tc3a-abgp", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42329", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11562", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42329" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25625", "reference_id": "ZBX-25625", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:55:49Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25625" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42329" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w2aq-tc3a-abgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85883?format=api", "vulnerability_id": "VCID-w3db-z1pw-pkft", "summary": "The implementation of atob in \"Zabbix JS\" allows to create a string with arbitrary content and use it to access internal properties of objects.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36463", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59584", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-36463" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36463", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36463" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25611", "reference_id": "ZBX-25611", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T16:21:34Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25611" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366463?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.3%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.3%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-36463" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w3db-z1pw-pkft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85732?format=api", "vulnerability_id": "VCID-w3zx-k5y2-jqam", "summary": "Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbix_server will try to communicate with it as modem. As a result, log file will be broken with AT commands and small part for log file content will be leaked to UI.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22123", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00402", "scoring_system": "epss", "scoring_elements": "0.61066", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22123" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553", "reference_id": "1078553", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078553" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25013", "reference_id": "ZBX-25013", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-09T14:40:56Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25013" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366459?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22123" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w3zx-k5y2-jqam" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80869?format=api", "vulnerability_id": "VCID-wu5f-qbw2-rbhv", "summary": "The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute arbitrary commands via a crafted request.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4498", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.71776", "scoring_system": "epss", "scoring_elements": "0.9876", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4498" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613", "reference_id": "562613", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562613" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/20796.rb", "reference_id": "CVE-2009-4498;OSVDB-60965", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/20796.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/10432.txt", "reference_id": "CVE-2009-4501;CVE-2009-4499;CVE-2009-4498;OSVDB-60968;OSVDB-60966;OSVDB-60965", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/10432.txt" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366432?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4498" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wu5f-qbw2-rbhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81652?format=api", "vulnerability_id": "VCID-wxd8-9wt4-ckbv", "summary": "The user.login function in Zabbix before 1.8.16 and 2.x before 2.0.5rc1 allows remote attackers to override LDAP configuration via the cnf parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63518", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1364" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698541", "reference_id": "698541", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698541" }, { "reference_url": "https://security.gentoo.org/glsa/201311-15", "reference_id": "GLSA-201311-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-15" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366440?format=api", "purl": "pkg:deb/debian/zabbix@1:2.0.4%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.0.4%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-1364" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wxd8-9wt4-ckbv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87581?format=api", "vulnerability_id": "VCID-xjwe-vdfp-6ua5", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32725", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01064", "scoring_system": "epss", "scoring_elements": "0.77968", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32725" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32725" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xjwe-vdfp-6ua5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81797?format=api", "vulnerability_id": "VCID-xp7h-hc7a-efd5", "summary": "The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and 2.2.x before 2.2.2rc1 allows remote \"Zabbix Admin\" users to modify the media of arbitrary users via unspecified vectors.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1685", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60577", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1685" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1685", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1685" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366441?format=api", "purl": "pkg:deb/debian/zabbix@1:2.2.2%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.2.2%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-1685" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xp7h-hc7a-efd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60173?format=api", "vulnerability_id": "VCID-xs3e-gccf-3yc1", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22120", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.91949", "scoring_system": "epss", "scoring_elements": "0.99711", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22120" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072120", "reference_id": "1072120", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072120" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-24505", "reference_id": "ZBX-24505", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-05-20T13:29:40Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-24505" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366461?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.29%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.29%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22120" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xs3e-gccf-3yc1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86680?format=api", "vulnerability_id": "VCID-xsfb-mdby-y3cn", "summary": "A low privilege Zabbix user with API access can exploit a blind SQL injection vulnerability in include/classes/api/CApiService.php to execute arbitrary SQL selects via the sortfield parameter. Although query results are not returned directly, an attacker can exfiltrate arbitrary database data through time-based techniques, potentially leading to session identifier disclosure and administrator account compromise.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23921", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1194", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-23921" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23921", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23921" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27640", "reference_id": "ZBX-27640", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T19:24:25Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27640" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-23921" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xsfb-mdby-y3cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86432?format=api", "vulnerability_id": "VCID-xswf-tb1g-6khv", "summary": "A regular Zabbix user with no permission to the Monitoring -> Problems view is still able to call the problem.view.refresh action and therefore still retrieve a list of active problems.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49641", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.1449", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49641" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49641", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49641" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448", "reference_id": "1117448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117448" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-27063", "reference_id": "ZBX-27063", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-03T13:51:55Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-27063" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366469?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49641" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xswf-tb1g-6khv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87471?format=api", "vulnerability_id": "VCID-y42u-but4-5yet", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23134", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.9261", "scoring_system": "epss", "scoring_elements": "0.99755", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23134" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6SZYHXINBKCY42ITFSNCYE7KCSF33VRA/", "reference_id": "6SZYHXINBKCY42ITFSNCYE7KCSF33VRA", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T17:20:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6SZYHXINBKCY42ITFSNCYE7KCSF33VRA/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/02/msg00008.html", "reference_id": "msg00008.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T17:20:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/02/msg00008.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VB6W556GVXOKUYTASTDGL3AI7S3SJHX7/", "reference_id": "VB6W556GVXOKUYTASTDGL3AI7S3SJHX7", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T17:20:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VB6W556GVXOKUYTASTDGL3AI7S3SJHX7/" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-20384", "reference_id": "ZBX-20384", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T17:20:09Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-20384" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366454?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.7%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.7%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-23134" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y42u-but4-5yet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78614?format=api", "vulnerability_id": "VCID-y54e-ww3j-c7hz", "summary": "zabbix file descriptor consumption by authorized hosts", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1353.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1353.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1353", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05858", "scoring_system": "epss", "scoring_elements": "0.90697", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1353" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=437848", "reference_id": "437848", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=437848" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=471678", "reference_id": "471678", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=471678" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/dos/31403.txt", "reference_id": "CVE-2008-1353;OSVDB-42944", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/dos/31403.txt" }, { "reference_url": "https://www.securityfocus.com/bid/28244/info", "reference_id": "CVE-2008-1353;OSVDB-42944", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/28244/info" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366430?format=api", "purl": "pkg:deb/debian/zabbix@1:1.4.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.4.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-1353" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y54e-ww3j-c7hz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81073?format=api", "vulnerability_id": "VCID-yj8r-4wcn-4bcj", "summary": "SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the nav_time parameter.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-5049", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65695", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-5049" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5049", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5049" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366433?format=api", "purl": "pkg:deb/debian/zabbix@1:1.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:1.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-5049" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yj8r-4wcn-4bcj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63347?format=api", "vulnerability_id": "VCID-ym7t-2ccz-dufz", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27927", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.255", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27927" }, { "reference_url": "https://security.archlinux.org/AVG-1771", "reference_id": "AVG-1771", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1771" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-27927" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ym7t-2ccz-dufz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85934?format=api", "vulnerability_id": "VCID-ypmn-9m52-37c4", "summary": "The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information and have forged data show in the Zabbix UI. This attack requires SNMP auth to be off and/or the attacker to know the community/auth details. The attack requires an SNMP item to be configured as text on the target host.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42332", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00425", "scoring_system": "epss", "scoring_elements": "0.62487", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42332" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689", "reference_id": "1088689", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088689" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25628", "reference_id": "ZBX-25628", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:54:59Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25628" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366464?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.45%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.45%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-42332" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ypmn-9m52-37c4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83441?format=api", "vulnerability_id": "VCID-z63q-3m2p-zkgm", "summary": "An issue was discovered in zabbix.php?action=dashboard.view&dashboardid=1 in Zabbix through 4.4. An attacker can bypass the login page and access the dashboard page, and then create a Dashboard, Report, Screen, or Map without any Username/Password (i.e., anonymously). All created elements (Dashboard/Report/Screen/Map) are accessible by other users and by an admin.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17382", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.93689", "scoring_system": "epss", "scoring_elements": "0.99856", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17382" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366444?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2019-17382" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z63q-3m2p-zkgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91493?format=api", "vulnerability_id": "VCID-z6hd-gea2-4qfc", "summary": "A Firewall Rule which allows all incoming TCP connections to all programs from any source and to all ports is created in Windows Firewall after Zabbix agent installation (MSI)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43516", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0454", "scoring_system": "epss", "scoring_elements": "0.89348", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-43516" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22002", "reference_id": "ZBX-22002", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-18T18:08:51Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22002" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366431?format=api", "purl": "pkg:deb/debian/zabbix@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-43516" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6hd-gea2-4qfc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61807?format=api", "vulnerability_id": "VCID-z6ua-j3px-a7d7", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10134", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.86228", "scoring_system": "epss", "scoring_elements": "0.99415", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10134" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10134", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10134" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850936", "reference_id": "850936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850936" }, { "reference_url": "https://usn.ubuntu.com/USN-4767-1/", "reference_id": "USN-USN-4767-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4767-1/" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-11023", "reference_id": "ZBX-11023", "reference_type": "", "scores": [], "url": "https://support.zabbix.com/browse/ZBX-11023" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366447?format=api", "purl": "pkg:deb/debian/zabbix@1:3.0.4%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:3.0.4%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-10134", "ZBX-11023" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6ua-j3px-a7d7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81737?format=api", "vulnerability_id": "VCID-zeka-ww94-hkhm", "summary": "Multiple SQL injection vulnerabilities in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.9rc1, and 2.1.x before 2.1.7.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-5743", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.77788", "scoring_system": "epss", "scoring_elements": "0.9902", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-5743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5743" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/webapps/28972.rb", "reference_id": "CVE-2013-5743;OSVDB-98115", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/webapps/28972.rb" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366442?format=api", "purl": "pkg:deb/debian/zabbix@1:2.0.8%2Bdfsg-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:2.0.8%252Bdfsg-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-5743" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zeka-ww94-hkhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85162?format=api", "vulnerability_id": "VCID-ztay-x9hb-mugw", "summary": "URL validation scheme receives input from a user and then parses it to identify its various components. The validation scheme can ensure that all URL components comply with internet standards.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29456", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.35898", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-29456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29456" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175", "reference_id": "1055175", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055175" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:19:48Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-22987", "reference_id": "ZBX-22987", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-22T16:19:48Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-22987" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366457?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-29456" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ztay-x9hb-mugw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85729?format=api", "vulnerability_id": "VCID-zvmb-x8h3-f3c2", "summary": "When a URL is added to the map element, it is recorded in the database with sequential IDs. Upon adding a new URL, the system retrieves the last sysmapelementurlid value and increments it by one. However, an issue arises when a user manually changes the sysmapelementurlid value by adding sysmapelementurlid + 1. This action prevents others from adding URLs to the map element.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22117", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1804", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-22117" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22117", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22117" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-25610", "reference_id": "ZBX-25610", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T15:03:28Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-25610" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366455?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366460?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.5%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.5%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-22117" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zvmb-x8h3-f3c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85216?format=api", "vulnerability_id": "VCID-zz8j-cs73-3uac", "summary": "Request to LDAP is sent before user permissions are checked.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31448", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-32723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32723" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877", "reference_id": "1053877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html", "reference_id": "msg00012.html", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-17T13:43:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html" }, { "reference_url": "https://support.zabbix.com/browse/ZBX-23230", "reference_id": "ZBX-23230", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-17T13:43:34Z/" } ], "url": "https://support.zabbix.com/browse/ZBX-23230" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/366444?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366425?format=api", "purl": "pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366423?format=api", "purl": "pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jmk-3utk-f3gf" }, { "vulnerability": "VCID-27zk-gd76-17d9" }, { "vulnerability": "VCID-28tw-zq62-muhw" }, { "vulnerability": "VCID-2gdp-ezx6-r3gc" }, { "vulnerability": "VCID-2xda-jyqx-sbfb" }, { "vulnerability": "VCID-31f1-tmyp-7bb3" }, { "vulnerability": "VCID-3wu1-6ryx-kfbk" }, { "vulnerability": "VCID-3zqr-p6r1-nqhm" }, { "vulnerability": "VCID-4a17-zh7e-q3f7" }, { "vulnerability": "VCID-5p3r-fm4e-mfc8" }, { "vulnerability": "VCID-91y8-33r3-p3bd" }, { "vulnerability": "VCID-9kpu-3pg7-sye9" }, { "vulnerability": "VCID-9qk4-t8r9-3qac" }, { "vulnerability": "VCID-c3jn-yp2v-27fa" }, { "vulnerability": "VCID-dfug-hy1g-ckhy" }, { "vulnerability": "VCID-fp2q-2r83-5be8" }, { "vulnerability": "VCID-fv8b-gqpz-hkcf" }, { "vulnerability": "VCID-gcef-4wcx-2yd3" }, { "vulnerability": "VCID-gr58-gsq7-s3e3" }, { "vulnerability": "VCID-hca2-qfq5-fkas" }, { "vulnerability": "VCID-hgb3-wkuh-dybe" }, { "vulnerability": "VCID-hp4k-gppm-nqbf" }, { "vulnerability": "VCID-jcsf-hv23-fyhm" }, { "vulnerability": "VCID-k2c8-xyyw-bugs" }, { "vulnerability": "VCID-ktpa-x12y-j7gh" }, { "vulnerability": "VCID-m884-rwtn-v3fn" }, { "vulnerability": "VCID-mb8y-88yg-g7bu" }, { "vulnerability": "VCID-mhc9-vh2a-97gr" }, { "vulnerability": "VCID-ndz4-vfp7-2ycv" }, { "vulnerability": "VCID-net7-4wh4-ukhr" }, { "vulnerability": "VCID-nrfa-cvvg-bqf2" }, { "vulnerability": "VCID-nuhv-g4d6-j7b7" }, { "vulnerability": "VCID-p2ar-g6j8-f7bw" }, { "vulnerability": "VCID-qe3f-ug4c-43dg" }, { "vulnerability": "VCID-r4sw-v23f-8ucb" }, { "vulnerability": "VCID-r95n-4jeb-jbg2" }, { "vulnerability": "VCID-tpsv-e6rv-3kas" }, { "vulnerability": "VCID-ur6a-arj7-gqae" }, { "vulnerability": "VCID-vf5e-hc3p-dkar" }, { "vulnerability": "VCID-vn1v-av5m-uydb" }, { "vulnerability": "VCID-w3db-z1pw-pkft" }, { "vulnerability": "VCID-w3zx-k5y2-jqam" }, { "vulnerability": "VCID-xjwe-vdfp-6ua5" }, { "vulnerability": "VCID-xs3e-gccf-3yc1" }, { "vulnerability": "VCID-xsfb-mdby-y3cn" }, { "vulnerability": "VCID-xswf-tb1g-6khv" }, { "vulnerability": "VCID-ypmn-9m52-37c4" }, { "vulnerability": "VCID-ztay-x9hb-mugw" }, { "vulnerability": "VCID-zvmb-x8h3-f3c2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366427?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/366426?format=api", "purl": "pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-32723" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zz8j-cs73-3uac" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie" }