Lucene search
China National Vulnerability DatabaseCNVD-2022-56704HistoryJul 08, 2022 - 12:00 a.m.
Zabbix Frontend Cross-Site Scripting Vulnerability (CNVD-2022-56704)
2022-07-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
28.8%
Zabbix Frontend is a monitoring software front-end tool from Zabbix, Inc. A cross-site scripting vulnerability exists in Zabbix Frontend, which could be exploited by an authenticated attacker to create a link to a discovery page with reflected Javascript code and send it to other users.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Zabbix Zabbix Frontend | lt | 4.0.0 | |
| Zabbix Zabbix Frontend >=5.0.0, | lt | 5.0.25 | |
| Zabbix Zabbix Frontend >=6.0.0, | le | 6.0.4 |
Related
cve
cve
CVE-2022-35229
2022-07-06 11:15:08
ubuntucve
ubuntucve
CVE-2022-35229
2022-07-06 00:00:00
cvelist
cvelist
CVE-2022-35229 Reflected XSS in discovery page of Zabbix Frontend
2022-07-06 00:00:00
nvd
nvd
CVE-2022-35229
2022-07-06 11:15:08
debiancve
debiancve
CVE-2022-35229
2022-07-06 11:15:08
osv
osv
CVE-2022-35229
2022-07-06 11:15:08
zabbix vulnerabilities
2024-04-25 20:13:57
zabbix - security update
2023-04-12 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-07-06 11:15:00
nessus
nessus
openvas
openvas
Ubuntu: Security Advisory (USN-6751-1)
2024-04-26 00:00:00
Debian: Security Advisory (DLA-3390-1)
2023-04-13 00:00:00
Debian: Security Advisory (DLA-3538-1)
2023-08-22 00:00:00
ubuntu
ubuntu
Zabbix vulnerabilities
2024-04-25 00:00:00
debian
debian
[SECURITY] [DLA 3390-1] zabbix security update
2023-04-12 13:36:51
[SECURITY] [DLA 3390-1] zabbix security update
2023-04-12 13:46:20
[SECURITY] [DLA 3538-1] zabbix security update
2023-08-22 13:22:21